oneadjump.com/
167.235.242.21301 Moved Permanently 178 B IP 167.235.242.21:0
ASN #24940 Hetzner Online GmbH
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash bd2695f4b079c71dbddde3436286fb9c
733c05da132193d6cf1d8e242d12e2525c03bab4
2e04a18ff185ba5b16f762a0538339bc4049aceaef9738edd43af77d2ceb788b
Analyzer Verdict Alert fortinet Malware
GET / HTTP/1.1
Host: oneadjump.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 04 Dec 2022 02:55:56 GMT
Content-Type: text/html
Content-Length: 178
Connection: keep-alive
Location: https://oneadjump.com/
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash cfec3d7283a9b66d2be426ce54d210f3
808c1feb1ba918951d1928c1f6bfc0c253262774
1bad6c06aa3e88dcbc125fc98a6cb753eb2b18d2c8dd61da21d12209aeeda3f9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1BAD6C06AA3E88DCBC125FC98A6CB753EB2B18D2C8DD61DA21D12209AEEDA3F9"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8358
Expires: Sun, 04 Dec 2022 05:15:14 GMT
Date: Sun, 04 Dec 2022 02:55:56 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 67e9370f1bf3e4946a01f346eeae8966
aaab391d1134302d718de7a0d5edbedf884633e6
27a8654fb14db88d4b2bb3b45c1b197fc498cd94143d4a68687742fa48a41358
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3880
Cache-Control: max-age=117596
Content-Type: application/ocsp-response
Date: Sun, 04 Dec 2022 02:55:56 GMT
Etag: "638b2570-1d7"
Expires: Mon, 05 Dec 2022 11:35:52 GMT
Last-Modified: Sat, 03 Dec 2022 10:31:12 GMT
Server: ECS (ska/F70D)
X-Cache: HIT
Content-Length: 471
firefox.settings.services.mozilla.com/v1/
34.102.187.140200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 14cd9a0afb6ba9a763651d5112760d1e
75d7b104ab9ab11fbb73c3f348b43b0119b5adfa
4e32a117106be587ffcd63239c16a8117eb7840830d4c9decf6527761967532e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Alert, Backoff, Content-Length, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sun, 04 Dec 2022 02:20:02 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 2155
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 1ea206ac3c440825741687351f8c6e4e
2f38dafd8c43dcce2411a0590bc5c02cd6286735
7d7232c8c91bcd18161ba2c9d23e3bff159604e058bd5b3fc1c7fcbcd03a7ee3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "7D7232C8C91BCD18161BA2C9D23E3BFF159604E058BD5B3FC1C7FCBCD03A7EE3"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7951
Expires: Sun, 04 Dec 2022 05:08:28 GMT
Date: Sun, 04 Dec 2022 02:55:57 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 9ebddc2b260d081ebbefee47c037cb28
492bad62a7ca6a74738921ef5ae6f0be5edebf39
74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5
GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: na2riQBN57zuZxohE3lT5CqP+BPxueHHbHVY9d800eEUzZyhh3DWHnPoVF6okswTJzxfZ3x1t3I=
x-amz-request-id: 1XQH32GSBHNZTSCY
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sun, 04 Dec 2022 02:47:22 GMT
age: 515
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
oneadjump.com/
167.235.242.21301 Moved Permanently 178 B IP 167.235.242.21:0
ASN #24940 Hetzner Online GmbH
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash bd2695f4b079c71dbddde3436286fb9c
733c05da132193d6cf1d8e242d12e2525c03bab4
2e04a18ff185ba5b16f762a0538339bc4049aceaef9738edd43af77d2ceb788b
Analyzer Verdict Alert fortinet Malware
GET / HTTP/1.1
Host: oneadjump.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/1.1 301 Moved Permanently
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 04 Dec 2022 02:55:57 GMT
Content-Type: text/html
Content-Length: 178
Connection: keep-alive
Location: https://funkcjonariusz.com/czy-funkcjonariusz-jest-w-stanie-zastapic-pegasusa.html?domain=oneadjump.com&redirect=/
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 04 Dec 2022 02:55:57 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
funkcjonariusz.com/czy-funkcjonariusz-jest-w-stanie-zastapic-pegasusa.html?domain=oneadjump.com&redirect=/
167.235.242.21200 OK 11 kB URL HTTP/1.1 funkcjonariusz.com/czy-funkcjonariusz-jest-w-stanie-zastapic-pegasusa.html?domain=oneadjump.com&redirect=/
IP 167.235.242.21:0
ASN #24940 Hetzner Online GmbH
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (707)
Hash 85e3e388f5b8099a6680680f1c9fb0ba
2c348eb33cef5f006191c6fdb5bef652c1823a17
1353f33b424d69ae460abbb010d20ce2f65867e0eddcbb121663733c7e408283
GET /czy-funkcjonariusz-jest-w-stanie-zastapic-pegasusa.html?domain=oneadjump.com&redirect=/ HTTP/1.1
Host: funkcjonariusz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 04 Dec 2022 02:55:57 GMT
Content-Type: text/html; charset=UTF-8
Content-Length: 11022
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
34.102.187.140200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Last-Modified, Retry-After, Cache-Control, Content-Type, Pragma, Backoff, ETag, Expires, Content-Length, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sun, 04 Dec 2022 02:08:58 GMT
cache-control: public,max-age=3600
age: 2819
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2
funkcjonariusz.com/css/bootstrap.css
167.235.242.21200 OK 24 kB URL HTTP/1.1 funkcjonariusz.com/css/bootstrap.css
IP 167.235.242.21:0
ASN #24940 Hetzner Online GmbH
File type ASCII text, with very long lines (65326)
Hash 89615fe7d49bd6546a64456a7d3c804d
6470bc374c9380960a0c4acf54f8ecd1a9f9faaf
271463e90b4fb1cc2c58c80f122c0b3714cf13ab6e6ca94d477e4ea51644396a
GET /css/bootstrap.css HTTP/1.1
Host: funkcjonariusz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://funkcjonariusz.com/czy-funkcjonariusz-jest-w-stanie-zastapic-pegasusa.html?domain=oneadjump.com&redirect=/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 04 Dec 2022 02:55:57 GMT
Content-Type: text/css
Content-Length: 23916
Connection: keep-alive
Last-Modified: Tue, 13 Oct 2020 15:33:28 GMT
ETag: "27288-5b18f22edc200-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
cdnjs.cloudflare.com/ajax/libs/js-cookie/2.1.2/js.cookie.min.js
104.17.25.14200 OK 769 B URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/js-cookie/2.1.2/js.cookie.min.js
IP 104.17.25.14:0
File type ASCII text, with very long lines (1680)
Hash 02bfa152bb1eed6bdcb421db0779f25a
bfe4d1a7ec5aa79d6289958078a9594a094d5980
689223b9b3c3c57c63a61e6877992971ed693ac2a8ebf66f472d0b27a771c44e
GET /ajax/libs/js-cookie/2.1.2/js.cookie.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://funkcjonariusz.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 04 Dec 2022 02:55:57 GMT
content-type: application/javascript; charset=utf-8
content-length: 769
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03ec5-6ba"
last-modified: Mon, 04 May 2020 16:11:49 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 4517771
expires: Fri, 24 Nov 2023 02:55:57 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=TfpErYVG07Car968zIBP6QAAJjajrf8h0L4s4Fdf2SoFRbHEmsgckhy9H4x9ubfcSej1bjqS5WcdQfpGTA%2BTqhInfJv%2Bm2B4iuGeNvX5sgbdCDJNzn45iSVG5ARLaRwimKtQMMFL"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 77414420fb55b51b-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
funkcjonariusz.com/css/jquery.fancybox.min.css
167.235.242.21200 OK 3.2 kB URL HTTP/1.1 funkcjonariusz.com/css/jquery.fancybox.min.css
IP 167.235.242.21:0
ASN #24940 Hetzner Online GmbH
File type Unicode text, UTF-8 text, with very long lines (13734), with no line terminators
Hash 4aa83282cfd78eff0eb96f1ef859c41c
2dad526069f66371f4f390c8bd451116e7a3681e
c111dffb462e77cb52ee7474752b18e01ce935d5295e212c9031f42cf30326f5
GET /css/jquery.fancybox.min.css HTTP/1.1
Host: funkcjonariusz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://funkcjonariusz.com/czy-funkcjonariusz-jest-w-stanie-zastapic-pegasusa.html?domain=oneadjump.com&redirect=/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 04 Dec 2022 02:55:57 GMT
Content-Type: text/css
Content-Length: 3155
Connection: keep-alive
Last-Modified: Tue, 28 Nov 2017 10:38:18 GMT
ETag: "35a7-55f089df4da80-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
funkcjonariusz.com/css/fontawesome-all.css
167.235.242.21200 OK 13 kB URL HTTP/1.1 funkcjonariusz.com/css/fontawesome-all.css
IP 167.235.242.21:0
ASN #24940 Hetzner Online GmbH
File type ASCII text, with CRLF line terminators
Hash adf3a6fed60d38c204720752cd413052
945a1bb200be4c52a92c7d5db77b693f85de903f
2b87c839b3ba2f88c1ef69efd275060d33fe769c8bddf4129581c3849067adf8
GET /css/fontawesome-all.css HTTP/1.1
Host: funkcjonariusz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://funkcjonariusz.com/czy-funkcjonariusz-jest-w-stanie-zastapic-pegasusa.html?domain=oneadjump.com&redirect=/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 04 Dec 2022 02:55:57 GMT
Content-Type: text/css
Content-Length: 12769
Connection: keep-alive
Last-Modified: Thu, 31 Oct 2019 10:56:02 GMT
ETag: "1229e-59632b1f97480-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
funkcjonariusz.com/css/flaticon.css
167.235.242.21200 OK 2.4 kB URL HTTP/1.1 funkcjonariusz.com/css/flaticon.css
IP 167.235.242.21:0
ASN #24940 Hetzner Online GmbH
Hash 7652ca420cdeefa432c1391ad4b3c9f9
a3465f595329ff935198d7fc5a06df91f8fbe06a
832e59ebccca80a0931b8eb104affd0fccf423524600a001376873860071059e
GET /css/flaticon.css HTTP/1.1
Host: funkcjonariusz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://funkcjonariusz.com/czy-funkcjonariusz-jest-w-stanie-zastapic-pegasusa.html?domain=oneadjump.com&redirect=/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 04 Dec 2022 02:55:57 GMT
Content-Type: text/css
Content-Length: 2399
Connection: keep-alive
Last-Modified: Mon, 01 Mar 2021 11:54:22 GMT
ETag: "347e-5bc78474ed780-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
funkcjonariusz.com/css/owl.css
167.235.242.21200 OK 1.4 kB URL HTTP/1.1 funkcjonariusz.com/css/owl.css
IP 167.235.242.21:0
ASN #24940 Hetzner Online GmbH
Hash ac8f7d1b4d3be771dcaed611a26fde38
e74cc446237d3de6b49071f24cc0147200bb9163
45d0ebafa3dc28dd7fd0306af0b41b2b2ed0cf7418f17313d567cebb6e1b3ef9
GET /css/owl.css HTTP/1.1
Host: funkcjonariusz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://funkcjonariusz.com/czy-funkcjonariusz-jest-w-stanie-zastapic-pegasusa.html?domain=oneadjump.com&redirect=/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 04 Dec 2022 02:55:57 GMT
Content-Type: text/css
Content-Length: 1382
Connection: keep-alive
Last-Modified: Fri, 23 Aug 2019 17:06:50 GMT
ETag: "1290-590cbd5021e80-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
funkcjonariusz.com/css/animate.css
167.235.242.21200 OK 4.7 kB URL HTTP/1.1 funkcjonariusz.com/css/animate.css
IP 167.235.242.21:0
ASN #24940 Hetzner Online GmbH
File type ASCII text, with CRLF line terminators
Hash 2dc0f7d3541bbc18bb70417a3d4f0d02
521de080b8c519279b982723e66290858abf78c4
3d57ddbe978b68a2e7796c09f2137338121d0ebc80aeb2ecc92c5543a97bb01f
GET /css/animate.css HTTP/1.1
Host: funkcjonariusz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://funkcjonariusz.com/czy-funkcjonariusz-jest-w-stanie-zastapic-pegasusa.html?domain=oneadjump.com&redirect=/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 04 Dec 2022 02:55:57 GMT
Content-Type: text/css
Content-Length: 4681
Connection: keep-alive
Last-Modified: Fri, 08 Apr 2016 08:36:48 GMT
ETag: "13541-52ff5187ea800-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
funkcjonariusz.com/css/jquery-ui.css
167.235.242.21200 OK 8.5 kB URL HTTP/1.1 funkcjonariusz.com/css/jquery-ui.css
IP 167.235.242.21:0
ASN #24940 Hetzner Online GmbH
File type ASCII text, with very long lines (2363), with CRLF line terminators
Hash abc8dad74008d7968b752f34f5bd21f1
ace9d0af648f2b83f1517e00e71b98bdba7f09f3
830260c7b60c5aab137929ec38af46561029e862644836a87fea5bce02bedb17
GET /css/jquery-ui.css HTTP/1.1
Host: funkcjonariusz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://funkcjonariusz.com/czy-funkcjonariusz-jest-w-stanie-zastapic-pegasusa.html?domain=oneadjump.com&redirect=/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 04 Dec 2022 02:55:57 GMT
Content-Type: text/css
Content-Length: 8461
Connection: keep-alive
Last-Modified: Tue, 16 Jun 2020 09:58:04 GMT
ETag: "918e-5a83094544300-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
funkcjonariusz.com/css/hover.css
167.235.242.21200 OK 8.8 kB URL HTTP/1.1 funkcjonariusz.com/css/hover.css
IP 167.235.242.21:0
ASN #24940 Hetzner Online GmbH
File type ASCII text, with CRLF line terminators
Hash 6065b680b47831f50c8321d08ffd73fb
7b465484ef6c354f99ea3abc80ffe940c6afd3bb
653bb5dc2809323f4cd633895c7b621f90371e81de4af2a60c905f560fc5236e
GET /css/hover.css HTTP/1.1
Host: funkcjonariusz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://funkcjonariusz.com/czy-funkcjonariusz-jest-w-stanie-zastapic-pegasusa.html?domain=oneadjump.com&redirect=/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 04 Dec 2022 02:55:57 GMT
Content-Type: text/css
Content-Length: 8837
Connection: keep-alive
Last-Modified: Mon, 09 Mar 2015 01:40:08 GMT
ETag: "205f9-510d11d386e00-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
funkcjonariusz.com/css/custom-animate.css
167.235.242.21200 OK 464 B URL HTTP/1.1 funkcjonariusz.com/css/custom-animate.css
IP 167.235.242.21:0
ASN #24940 Hetzner Online GmbH
File type ASCII text, with CRLF line terminators
Hash 88e92511b3506766bc3147ccafc4191e
90a32109f85c3fc4432d8e3a9ce48073e8450719
32fc1049b5f87c60b7e7b42eb8f73f6cd929412d257e95e0084a7e0da3c58af9
GET /css/custom-animate.css HTTP/1.1
Host: funkcjonariusz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://funkcjonariusz.com/czy-funkcjonariusz-jest-w-stanie-zastapic-pegasusa.html?domain=oneadjump.com&redirect=/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 04 Dec 2022 02:55:57 GMT
Content-Type: text/css
Content-Length: 464
Connection: keep-alive
Last-Modified: Wed, 13 May 2020 14:00:40 GMT
ETag: "1123-5a58801547200-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
funkcjonariusz.com/css/jarallax.css
167.235.242.21200 OK 206 B URL HTTP/1.1 funkcjonariusz.com/css/jarallax.css
IP 167.235.242.21:0
ASN #24940 Hetzner Online GmbH
Hash 35b88f862812f2be55e5216181e5f8f7
6b37b95b96a5fd7615004b73b42aa7a8d8912456
80ea7c853b1facdf18f14d5a04234ba5248b7d41714954de8e572ee87e0073e0
GET /css/jarallax.css HTTP/1.1
Host: funkcjonariusz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://funkcjonariusz.com/czy-funkcjonariusz-jest-w-stanie-zastapic-pegasusa.html?domain=oneadjump.com&redirect=/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 04 Dec 2022 02:55:57 GMT
Content-Type: text/css
Content-Length: 206
Connection: keep-alive
Last-Modified: Sun, 18 Oct 2020 16:11:02 GMT
ETag: "141-5b1f43e7bf180-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
funkcjonariusz.com/css/style-post.css
167.235.242.21200 OK 699 B URL HTTP/1.1 funkcjonariusz.com/css/style-post.css
IP 167.235.242.21:0
ASN #24940 Hetzner Online GmbH
Hash e810508a3a088c4009b060d04bc28f02
5a56e84f08b7f5d9ce428172ebe1cf86a47c93a2
e9de949b828ad039577c04dc6dd4e0d1fa74f5640c934c084c6b072dc75a58d9
GET /css/style-post.css HTTP/1.1
Host: funkcjonariusz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://funkcjonariusz.com/czy-funkcjonariusz-jest-w-stanie-zastapic-pegasusa.html?domain=oneadjump.com&redirect=/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 04 Dec 2022 02:55:57 GMT
Content-Type: text/css
Content-Length: 699
Connection: keep-alive
Last-Modified: Sat, 18 Jun 2022 21:57:40 GMT
ETag: "853-5e1bff5a9781a-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
funkcjonariusz.com/css/rtl.css
167.235.242.21200 OK 1.5 kB URL HTTP/1.1 funkcjonariusz.com/css/rtl.css
IP 167.235.242.21:0
ASN #24940 Hetzner Online GmbH
Hash 1b9eb02f1e99cd106ea8baedeebc0f91
ffe7efabb64055d5947a00f5c29cebf8c11183a5
12d19d848037924ee49114fd749521dc89939438dc33d7a5f8a0af4eefc25ce1
GET /css/rtl.css HTTP/1.1
Host: funkcjonariusz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://funkcjonariusz.com/czy-funkcjonariusz-jest-w-stanie-zastapic-pegasusa.html?domain=oneadjump.com&redirect=/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 04 Dec 2022 02:55:57 GMT
Content-Type: text/css
Content-Length: 1543
Connection: keep-alive
Last-Modified: Thu, 03 Dec 2020 15:07:06 GMT
ETag: "2271-5b590b68a7a80-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
funkcjonariusz.com/css/responsive.css
167.235.242.21200 OK 3.9 kB URL HTTP/1.1 funkcjonariusz.com/css/responsive.css
IP 167.235.242.21:0
ASN #24940 Hetzner Online GmbH
File type ASCII text, with CRLF line terminators
Hash cd5371df7bb8875cbd1abe0610797526
f100bb4eb4177071831f70141bc4b26215a93114
25394a7501384244fbfa1a7b9b120f0b382818892cc1f09b5dea598f58ad1ebb
GET /css/responsive.css HTTP/1.1
Host: funkcjonariusz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://funkcjonariusz.com/czy-funkcjonariusz-jest-w-stanie-zastapic-pegasusa.html?domain=oneadjump.com&redirect=/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 04 Dec 2022 02:55:57 GMT
Content-Type: text/css
Content-Length: 3919
Connection: keep-alive
Last-Modified: Sat, 06 Mar 2021 22:29:40 GMT
ETag: "65ce-5bce5bc863d00-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
funkcjonariusz.com/css/colors/color-default.css
167.235.242.21200 OK 36 B URL HTTP/1.1 funkcjonariusz.com/css/colors/color-default.css
IP 167.235.242.21:0
ASN #24940 Hetzner Online GmbH
File type ASCII text, with CRLF line terminators
Hash 09426f8079bfe6152f0665e5fa1bd615
054d18de7a36edf8d1fb13f50e156188b1e413e4
9d381f0d2f536f07a80de985f3eb88b0e9a2d89ed5e5b274acdc40b824349567
GET /css/colors/color-default.css HTTP/1.1
Host: funkcjonariusz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://funkcjonariusz.com/czy-funkcjonariusz-jest-w-stanie-zastapic-pegasusa.html?domain=oneadjump.com&redirect=/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 04 Dec 2022 02:55:57 GMT
Content-Type: text/css
Content-Length: 36
Connection: keep-alive
Last-Modified: Fri, 24 Jul 2020 13:56:36 GMT
ETag: "24-5ab30575c4d00"
Accept-Ranges: bytes
funkcjonariusz.com/css/menu.css
167.235.242.21200 OK 385 B URL HTTP/1.1 funkcjonariusz.com/css/menu.css
IP 167.235.242.21:0
ASN #24940 Hetzner Online GmbH
Hash 561a0dbe52fc7ca6bc5219c90c541a52
be1902b33f5d1a45e4d85261060a074edb53e493
c3134b5ec5aebc3b48e5db3f07f5fee1ff4d9fd7e78cd1c3da979a303779ed38
GET /css/menu.css HTTP/1.1
Host: funkcjonariusz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://funkcjonariusz.com/czy-funkcjonariusz-jest-w-stanie-zastapic-pegasusa.html?domain=oneadjump.com&redirect=/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 04 Dec 2022 02:55:57 GMT
Content-Type: text/css
Content-Length: 385
Connection: keep-alive
Last-Modified: Sat, 04 Jun 2022 07:44:12 GMT
ETag: "359-5e09a67b0fb78-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
funkcjonariusz.com/css/style.css
167.235.242.21200 OK 36 kB URL HTTP/1.1 funkcjonariusz.com/css/style.css
IP 167.235.242.21:0
ASN #24940 Hetzner Online GmbH
File type assembler source, ASCII text
Hash 64c6d5583968c832513e92d74c548f44
f77e4d1077ad16281b1ed5bc23d18cbf722ad16d
3657c7e4c12911c2ba88b688acde39ebf74709581a2db799fcdfee012a024581
GET /css/style.css HTTP/1.1
Host: funkcjonariusz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://funkcjonariusz.com/czy-funkcjonariusz-jest-w-stanie-zastapic-pegasusa.html?domain=oneadjump.com&redirect=/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 04 Dec 2022 02:55:57 GMT
Content-Type: text/css
Content-Length: 36164
Connection: keep-alive
Last-Modified: Mon, 09 May 2022 17:35:17 GMT
ETag: "45c5f-5de97a1ae307e-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
funkcjonariusz.com/js/popper.min.js
167.235.242.21200 OK 7.5 kB URL HTTP/1.1 funkcjonariusz.com/js/popper.min.js
IP 167.235.242.21:0
ASN #24940 Hetzner Online GmbH
File type ASCII text, with very long lines (20831), with CRLF line terminators
Hash 211682f332c1f036a3458943adcaacec
45308372432d680e9d5f554dab305077afdfc6c3
e555fc27dc95551b13b8fb9adcf2ce2dbb219ef0d58e7a118acca9fbd01bb300
GET /js/popper.min.js HTTP/1.1
Host: funkcjonariusz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://funkcjonariusz.com/czy-funkcjonariusz-jest-w-stanie-zastapic-pegasusa.html?domain=oneadjump.com&redirect=/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 04 Dec 2022 02:55:57 GMT
Content-Type: text/javascript
Content-Length: 7460
Connection: keep-alive
Last-Modified: Sat, 27 Jul 2019 22:21:48 GMT
ETag: "520f-58eb115b39700-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
funkcjonariusz.com/js/bootstrap.min.js
167.235.242.21200 OK 15 kB URL HTTP/1.1 funkcjonariusz.com/js/bootstrap.min.js
IP 167.235.242.21:0
ASN #24940 Hetzner Online GmbH
File type ASCII text, with very long lines (62961)
Hash 11bcd9bab21a863e2b4e5832a1cb1802
16663ea72b70e9238829ffd510a596f2b2c08bf3
9bf4511b16943a16676c31c13eb1f7ea61bb93526bc1137c06d76ab68bf55418
GET /js/bootstrap.min.js HTTP/1.1
Host: funkcjonariusz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://funkcjonariusz.com/czy-funkcjonariusz-jest-w-stanie-zastapic-pegasusa.html?domain=oneadjump.com&redirect=/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 04 Dec 2022 02:55:57 GMT
Content-Type: text/javascript
Content-Length: 14924
Connection: keep-alive
Last-Modified: Tue, 13 Oct 2020 15:33:28 GMT
ETag: "f708-5b18f22edc200-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
funkcjonariusz.com/js/jquery.fancybox.js
167.235.242.21200 OK 36 kB URL HTTP/1.1 funkcjonariusz.com/js/jquery.fancybox.js
IP 167.235.242.21:0
ASN #24940 Hetzner Online GmbH
Hash 9e2a87167cc89ed588ffa6b2be99e454
a92e098e3b2857a864f2d20515f55751d4f98526
1c99dacd0b9d105fdcee237f4899d9cc2bfdea01bf8839c58dea625676b29aad
GET /js/jquery.fancybox.js HTTP/1.1
Host: funkcjonariusz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://funkcjonariusz.com/czy-funkcjonariusz-jest-w-stanie-zastapic-pegasusa.html?domain=oneadjump.com&redirect=/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 04 Dec 2022 02:55:57 GMT
Content-Type: text/javascript
Content-Length: 36180
Connection: keep-alive
Last-Modified: Tue, 28 Nov 2017 10:38:18 GMT
ETag: "259f8-55f089df4da80-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
funkcjonariusz.com/js/jquery.js
167.235.242.21200 OK 31 kB URL HTTP/1.1 funkcjonariusz.com/js/jquery.js
IP 167.235.242.21:0
ASN #24940 Hetzner Online GmbH
File type ASCII text, with very long lines (65450), with CRLF line terminators
Hash b591856c6117c46b994a9594d426740c
72b42628496899bd786492b80704b47503f255ba
affddf5f8a22bff767db4488a38220e46207f81526e99ab9d76429d10b0d9176
GET /js/jquery.js HTTP/1.1
Host: funkcjonariusz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://funkcjonariusz.com/czy-funkcjonariusz-jest-w-stanie-zastapic-pegasusa.html?domain=oneadjump.com&redirect=/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 04 Dec 2022 02:55:57 GMT
Content-Type: text/javascript
Content-Length: 30913
Connection: keep-alive
Last-Modified: Tue, 16 Jun 2020 09:52:40 GMT
ETag: "15d95-5a83081046a00-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
funkcjonariusz.com/js/jquery.cookiebar.js
167.235.242.21200 OK 2.3 kB URL HTTP/1.1 funkcjonariusz.com/js/jquery.cookiebar.js
IP 167.235.242.21:0
ASN #24940 Hetzner Online GmbH
File type ASCII text, with CRLF line terminators
Hash d304b91e8c120976c0d613e035988140
2597007db5b17f9df58c033dfe1ab66ca10ec070
a65a598a676837b1b686298868be791aa8fd7626d92a0564aa5c3dd78f18c1d7
GET /js/jquery.cookiebar.js HTTP/1.1
Host: funkcjonariusz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://funkcjonariusz.com/czy-funkcjonariusz-jest-w-stanie-zastapic-pegasusa.html?domain=oneadjump.com&redirect=/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 04 Dec 2022 02:55:57 GMT
Content-Type: text/javascript
Content-Length: 2253
Connection: keep-alive
Last-Modified: Tue, 14 Apr 2015 11:45:38 GMT
ETag: "1ce6-513adc4f1bc80-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
funkcjonariusz.com/js/owl.js
167.235.242.21200 OK 20 kB URL HTTP/1.1 funkcjonariusz.com/js/owl.js
IP 167.235.242.21:0
ASN #24940 Hetzner Online GmbH
File type ASCII text, with very long lines (360)
Hash f8679d213d8cf62f912e9fb8f2091637
a51c3e4b4101451a985a9cc4e94e7e4c94bc9bf6
3d8286dac2116f02cba372bfdafb350469a33638ff713557119400fa71d6b14a
GET /js/owl.js HTTP/1.1
Host: funkcjonariusz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://funkcjonariusz.com/czy-funkcjonariusz-jest-w-stanie-zastapic-pegasusa.html?domain=oneadjump.com&redirect=/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 04 Dec 2022 02:55:57 GMT
Content-Type: text/javascript
Content-Length: 20037
Connection: keep-alive
Last-Modified: Fri, 23 Aug 2019 17:06:22 GMT
ETag: "15f88-590cbd356df80-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
funkcjonariusz.com/js/mixitup.js
167.235.242.21200 OK 11 kB URL HTTP/1.1 funkcjonariusz.com/js/mixitup.js
IP 167.235.242.21:0
ASN #24940 Hetzner Online GmbH
File type ASCII text, with very long lines (367)
Hash a7c116ffbf34f2c67533a6d5a67bc3a2
46e0ba3f476678880c421da065639790190bc8cb
b6e70f319c75dff37bd5126524f86a9b5b2505d6ceb118222515acb248cbe3f2
GET /js/mixitup.js HTTP/1.1
Host: funkcjonariusz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://funkcjonariusz.com/czy-funkcjonariusz-jest-w-stanie-zastapic-pegasusa.html?domain=oneadjump.com&redirect=/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 04 Dec 2022 02:55:57 GMT
Content-Type: text/javascript
Content-Length: 11347
Connection: keep-alive
Last-Modified: Thu, 01 Aug 2019 05:47:10 GMT
ETag: "cc00-58f07c5d27380-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
funkcjonariusz.com/js/validate.js
167.235.242.21200 OK 6.3 kB URL HTTP/1.1 funkcjonariusz.com/js/validate.js
IP 167.235.242.21:0
ASN #24940 Hetzner Online GmbH
File type Unicode text, UTF-8 text, with very long lines (20732), with CRLF line terminators
Hash 11793dbf3c57b922f7b128a3c6c5f1dc
03e01a49b4fa55001c0455126140b99f34d43212
93555692ca1af43112555dd7fb0efb96a11c3e0b1558a0dc456c36b5b5c792a5
GET /js/validate.js HTTP/1.1
Host: funkcjonariusz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://funkcjonariusz.com/czy-funkcjonariusz-jest-w-stanie-zastapic-pegasusa.html?domain=oneadjump.com&redirect=/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 04 Dec 2022 02:55:57 GMT
Content-Type: text/javascript
Content-Length: 6282
Connection: keep-alive
Last-Modified: Sun, 15 Mar 2015 09:51:42 GMT
ETag: "519b-51150ae3f6780-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 122124f83967c12700f5a6f5546b0f1f
d7acd2db61ad811c388a44b7bd407fa5f4aea8ee
b6b9e0b6c241b4eeb5161b1c297dec2aa6188032017074ee7f8e5533fab87a4d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 04 Dec 2022 02:55:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 3c4319f54a5675ee9acda96c58f97ac6
210ea86db1836d430b321d59b4bd1b016c914f22
cb20ad3ec895ed3a2ae9b1a90dda6b7cc174d8851f3a15ba054a435746cbdc65
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 04 Dec 2022 02:55:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash a151c326c67e1abb747847c1427db76f
80885d30ef8ba867bf33c40b861976958a27493a
de2b573ee1c8af980e593352e0c331b2595f62bd4499300ace30821d20814760
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3847
Cache-Control: max-age=112501
Content-Type: application/ocsp-response
Date: Sun, 04 Dec 2022 02:55:57 GMT
Etag: "638b11ab-1d7"
Expires: Mon, 05 Dec 2022 10:10:58 GMT
Last-Modified: Sat, 03 Dec 2022 09:06:51 GMT
Server: ECS (ska/F70D)
X-Cache: HIT
Content-Length: 471
funkcjonariusz.com/js/jarallax.min.js
167.235.242.21200 OK 5.2 kB URL HTTP/1.1 funkcjonariusz.com/js/jarallax.min.js
IP 167.235.242.21:0
ASN #24940 Hetzner Online GmbH
File type ASCII text, with very long lines (15303)
Hash 781042a26feddff3b153652b1014a773
ea63a0b29f1a48c9257e294bc86fe649e94a6246
3e64cde548d9048ceabd0aeceb876e3a8aefa66c0b841cd2e6f86b2abcb815a5
GET /js/jarallax.min.js HTTP/1.1
Host: funkcjonariusz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://funkcjonariusz.com/czy-funkcjonariusz-jest-w-stanie-zastapic-pegasusa.html?domain=oneadjump.com&redirect=/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 04 Dec 2022 02:55:57 GMT
Content-Type: text/javascript
Content-Length: 5245
Connection: keep-alive
Last-Modified: Sun, 18 Oct 2020 16:11:02 GMT
ETag: "3c8a-5b1f43e7bf180-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
funkcjonariusz.com/js/appear.js
167.235.242.21200 OK 1.4 kB URL HTTP/1.1 funkcjonariusz.com/js/appear.js
IP 167.235.242.21:0
ASN #24940 Hetzner Online GmbH
File type ASCII text, with CRLF line terminators
Hash 6e579d2e7a40e9f29986859858306345
861bd2368d7c3af07957477dca1d7f3161b06cd6
df6e430238f062023873e9cdf6b2dffa7fb53bba0f25143d9cc5463dd069765d
GET /js/appear.js HTTP/1.1
Host: funkcjonariusz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://funkcjonariusz.com/czy-funkcjonariusz-jest-w-stanie-zastapic-pegasusa.html?domain=oneadjump.com&redirect=/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 04 Dec 2022 02:55:57 GMT
Content-Type: text/javascript
Content-Length: 1368
Connection: keep-alive
Last-Modified: Mon, 09 Feb 2015 06:56:36 GMT
ETag: "111b-50ea2456fd100-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
funkcjonariusz.com/js/wow.js
167.235.242.21200 OK 2.2 kB URL HTTP/1.1 funkcjonariusz.com/js/wow.js
IP 167.235.242.21:0
ASN #24940 Hetzner Online GmbH
File type ASCII text, with very long lines (6269), with CRLF line terminators
Hash 3a0ccdd875f4f4fec83bbbf33b827285
df6193535cfbc57c662a5a67cd88da66fa617347
04cf198b89e33c5bdecf1406e68085cb6d372b567a0653c551f37f4eff76df14
GET /js/wow.js HTTP/1.1
Host: funkcjonariusz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://funkcjonariusz.com/czy-funkcjonariusz-jest-w-stanie-zastapic-pegasusa.html?domain=oneadjump.com&redirect=/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 04 Dec 2022 02:55:57 GMT
Content-Type: text/javascript
Content-Length: 2212
Connection: keep-alive
Last-Modified: Sun, 17 May 2015 10:30:06 GMT
ETag: "189c-516448f944780-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
funkcjonariusz.com/js/jQuery.style.switcher.min.js
167.235.242.21200 OK 1.1 kB URL HTTP/1.1 funkcjonariusz.com/js/jQuery.style.switcher.min.js
IP 167.235.242.21:0
ASN #24940 Hetzner Online GmbH
File type ASCII text, with very long lines (2765), with no line terminators
Hash ef73875778c9ce05a8024b7294ee5915
1e2e2de6f06f49f85912c080ed586a61d24a7546
fdc3ec386a44bd13a3bd6abf34aa8afa15896c446ce741e8370839049061d4e2
GET /js/jQuery.style.switcher.min.js HTTP/1.1
Host: funkcjonariusz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://funkcjonariusz.com/czy-funkcjonariusz-jest-w-stanie-zastapic-pegasusa.html?domain=oneadjump.com&redirect=/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 04 Dec 2022 02:55:57 GMT
Content-Type: text/javascript
Content-Length: 1138
Connection: keep-alive
Last-Modified: Fri, 24 Jul 2020 14:27:42 GMT
ETag: "acd-5ab30c6953380-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
funkcjonariusz.com/js/jquery.easing.min.js
167.235.242.21200 OK 1.9 kB URL HTTP/1.1 funkcjonariusz.com/js/jquery.easing.min.js
IP 167.235.242.21:0
ASN #24940 Hetzner Online GmbH
File type Unicode text, UTF-8 text, with very long lines (3601), with CRLF line terminators
Hash 393aa749ccac940f43dc8f4ae9c9defd
739e5d87569d0e0126c2eb9f52a8a08fc9b4de75
8c7bd8d04a8753306ff3a54ca7ed8e9da642cda6aafcac1926068bda1f830980
GET /js/jquery.easing.min.js HTTP/1.1
Host: funkcjonariusz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://funkcjonariusz.com/czy-funkcjonariusz-jest-w-stanie-zastapic-pegasusa.html?domain=oneadjump.com&redirect=/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 04 Dec 2022 02:55:57 GMT
Content-Type: text/javascript
Content-Length: 1881
Connection: keep-alive
Last-Modified: Fri, 21 Jun 2019 02:49:06 GMT
ETag: "15e9-58bcc81832c80-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
funkcjonariusz.com/images/icons/close-1-1.png
167.235.242.21200 OK 205 B URL HTTP/1.1 funkcjonariusz.com/images/icons/close-1-1.png
IP 167.235.242.21:0
ASN #24940 Hetzner Online GmbH
File type PNG image data, 17 x 17, 4-bit colormap, non-interlaced\012- data
Hash c2018b2104dfa50e236504efe7db6047
d1a7cce34ac90294f4dd713aa1304f2b7d99d00a
c8dc9f9d3512b048e96d59bf8105a1cf0952ae1072ce20f61670028028a6d907
GET /images/icons/close-1-1.png HTTP/1.1
Host: funkcjonariusz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://funkcjonariusz.com/czy-funkcjonariusz-jest-w-stanie-zastapic-pegasusa.html?domain=oneadjump.com&redirect=/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 04 Dec 2022 02:55:57 GMT
Content-Type: image/png
Content-Length: 205
Connection: keep-alive
Last-Modified: Wed, 17 Jun 2020 04:28:28 GMT
ETag: "cd-5a840176dd300"
Accept-Ranges: bytes
funkcjonariusz.com/images/custom/logo-funkcjonariusz-v1-white.png
167.235.242.21200 OK 40 kB URL HTTP/1.1 funkcjonariusz.com/images/custom/logo-funkcjonariusz-v1-white.png
IP 167.235.242.21:0
ASN #24940 Hetzner Online GmbH
File type PNG image data, 1193 x 150, 8-bit/color RGBA, non-interlaced\012- data
Hash 190aecec1903153a5dfeaff8f7f93d9c
e037003b8c9e01ba430b3820d01c03522490347c
88cc390378fb3c728f0ff7321e1ca2922b6b60880471c3d86e59be838b569abd
GET /images/custom/logo-funkcjonariusz-v1-white.png HTTP/1.1
Host: funkcjonariusz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://funkcjonariusz.com/czy-funkcjonariusz-jest-w-stanie-zastapic-pegasusa.html?domain=oneadjump.com&redirect=/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 04 Dec 2022 02:55:57 GMT
Content-Type: image/png
Content-Length: 39469
Connection: keep-alive
Last-Modified: Sat, 23 Oct 2021 08:40:33 GMT
ETag: "9a2d-5cf0114b6e240"
Accept-Ranges: bytes
www.googletagmanager.com/gtag/js?id=G-R9G8ZYDTDD
142.250.74.168200 OK 76 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=G-R9G8ZYDTDD
IP 142.250.74.168:0
File type ASCII text, with very long lines (20080)
Hash 272915b17c84f6dddc58110f50b93c14
e9f4b6041626e64ec5c09ff630a2574241018423
ed17e90297421a010fe84e92bf62366b87b66fa111a2f987dbd5e3fa62864b79
GET /gtag/js?id=G-R9G8ZYDTDD HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://funkcjonariusz.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sun, 04 Dec 2022 02:55:57 GMT
expires: Sun, 04 Dec 2022 02:55:57 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 76262
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 98fe7e5fd6b778bcdcc63028c3a49fbd
06b34160c344526fbe14ce41445b9fe76c0a878d
d45d898dfe5bf1151557bbbc3be6e6878fbadce386136d60777b4464199173a6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 04 Dec 2022 02:55:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash e63a3fb1ef1a4ebbbd126969d6ee68ca
8bc9c26950b3899087e25ddea159c28f57b47200
f2ec30377e239f64286ae7dde8032e4e332b6c123f7decc07126fbbcff460a69
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 04 Dec 2022 02:55:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
funkcjonariusz.com/images/icons/preloader.png
167.235.242.21200 OK 1.3 kB URL HTTP/1.1 funkcjonariusz.com/images/icons/preloader.png
IP 167.235.242.21:0
ASN #24940 Hetzner Online GmbH
File type PNG image data, 64 x 64, 8-bit colormap, non-interlaced\012- data
Hash de853e49f41d6403c4cf7a3e64d5ecc5
1ff54a2d3431292497c7a18165c49281d45f1e3c
13eadac304979aee30a0e7c4df8bad4c48e877c1137c7dddd2c23a7664b47d8e
GET /images/icons/preloader.png HTTP/1.1
Host: funkcjonariusz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://funkcjonariusz.com/css/style.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 04 Dec 2022 02:55:58 GMT
Content-Type: image/png
Content-Length: 1325
Connection: keep-alive
Last-Modified: Wed, 17 Jun 2020 04:28:56 GMT
ETag: "52d-5a84019191200"
Accept-Ranges: bytes
funkcjonariusz.com/images/background/b-shape-1.png
167.235.242.21200 OK 1.6 kB URL HTTP/1.1 funkcjonariusz.com/images/background/b-shape-1.png
IP 167.235.242.21:0
ASN #24940 Hetzner Online GmbH
File type PNG image data, 217 x 328, 8-bit colormap, non-interlaced\012- data
Hash df8dba0821c8544eed3c936da75afef7
ccb4ceaeac84f85b58bdd66872816c28f970f9b5
8859c62e492109d8aeea3a35dc7f3c9f3ff16ee6f8e017fabb2814eaf6e20bfc
GET /images/background/b-shape-1.png HTTP/1.1
Host: funkcjonariusz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://funkcjonariusz.com/css/style.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 04 Dec 2022 02:55:58 GMT
Content-Type: image/png
Content-Length: 1641
Connection: keep-alive
Last-Modified: Wed, 17 Jun 2020 04:25:32 GMT
ETag: "669-5a8400cf04700"
Accept-Ranges: bytes
payload.pl/wp-content/uploads/2022/01/pegasus-drawio-pl.png
167.235.242.21200 OK 70 kB URL HTTP/1.1 payload.pl/wp-content/uploads/2022/01/pegasus-drawio-pl.png
IP 167.235.242.21:0
ASN #24940 Hetzner Online GmbH
File type PNG image data, 1842 x 1122, 8-bit/color RGBA, non-interlaced\012- data
Hash 0b45e046b4ab4ad5c582017cef216ce3
3c952bdfa604c23abb055d203334d5a4185adeb1
76d1a42a7bd7cde0813fc57c7499085ce05a486809c8d6cf247529da3e41c770
GET /wp-content/uploads/2022/01/pegasus-drawio-pl.png HTTP/1.1
Host: payload.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://funkcjonariusz.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 04 Dec 2022 02:55:57 GMT
Content-Type: image/png
Content-Length: 70251
Connection: keep-alive
Last-Modified: Wed, 05 Jan 2022 00:55:57 GMT
ETag: "1126b-5d4cb3775e7e5"
Accept-Ranges: bytes
funkcjonariusz.com/images/background/b-shape-2.png
167.235.242.21200 OK 1.1 kB URL HTTP/1.1 funkcjonariusz.com/images/background/b-shape-2.png
IP 167.235.242.21:0
ASN #24940 Hetzner Online GmbH
File type PNG image data, 124 x 457, 4-bit colormap, non-interlaced\012- data
Hash 663e23e0cc00e7910c5d470fd8a01ecf
92fe732b4f079004d3b23f32ff6709b1ef6c9c22
991ab27d61f449bf4bc52e7ef3c97229b33ceb0a091955b798d0a3225a7c635e
GET /images/background/b-shape-2.png HTTP/1.1
Host: funkcjonariusz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://funkcjonariusz.com/css/style.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 04 Dec 2022 02:55:58 GMT
Content-Type: image/png
Content-Length: 1149
Connection: keep-alive
Last-Modified: Wed, 17 Jun 2020 04:25:32 GMT
ETag: "47d-5a8400cf04700"
Accept-Ranges: bytes
funkcjonariusz.com/images/background/we-do-section-bg-dark.jpg
167.235.242.21200 OK 91 kB URL HTTP/1.1 funkcjonariusz.com/images/background/we-do-section-bg-dark.jpg
IP 167.235.242.21:0
ASN #24940 Hetzner Online GmbH
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1894x740, components 3\012- data
Hash 6a458775fbfa7ddca937bb25178a561d
ae5bfb1c03c72ac3d232560bb19252c27fde5bb5
1fb6b68c02c940bd316008998c2ca422c2463810c1492ee4e17d5d4cae3b8759
GET /images/background/we-do-section-bg-dark.jpg HTTP/1.1
Host: funkcjonariusz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://funkcjonariusz.com/css/menu.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 04 Dec 2022 02:55:58 GMT
Content-Type: image/jpeg
Content-Length: 90873
Connection: keep-alive
Last-Modified: Wed, 25 Nov 2020 08:09:08 GMT
ETag: "162f9-5b4e9f10b9100"
Accept-Ranges: bytes
funkcjonariusz.com/images/custom/opengraph/berety.jpg
167.235.242.21200 OK 207 kB URL HTTP/1.1 funkcjonariusz.com/images/custom/opengraph/berety.jpg
IP 167.235.242.21:0
ASN #24940 Hetzner Online GmbH
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=4, xresolution=62, yresolution=70, resolutionunit=2, software=Paint.NET v3.5.10], baseline, precision 8, 1894x503, components 3\012- data
Size 207 kB (206790 bytes)
Hash ac5e067cc9c7f6729a79521852cbfa03
315e16eb43557e58be4133595a0cfefff688b279
4dbcd09b18d32e4aedbd8ecfd04e53b14c97acf7d666a2b864a524ea23b20bf4
GET /images/custom/opengraph/berety.jpg HTTP/1.1
Host: funkcjonariusz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://funkcjonariusz.com/czy-funkcjonariusz-jest-w-stanie-zastapic-pegasusa.html?domain=oneadjump.com&redirect=/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 04 Dec 2022 02:55:58 GMT
Content-Type: image/jpeg
Content-Length: 206790
Connection: keep-alive
Last-Modified: Tue, 28 Dec 2021 13:17:16 GMT
ETag: "327c6-5d434a3e28e40"
Accept-Ranges: bytes
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash baaba92c2ccd740f080a25a9ea5cb3ad
3322d5a9fb0b3a2ec83247eac9865234cbcefece
5150dcbc7293378fff4a337fd0f61bdbbf6b4f64bddba6d0fd270be37e81fe07
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 04 Dec 2022 02:55:58 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
push.services.mozilla.com/
35.160.184.41101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 35.160.184.41:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 11l+f6Iw8sIxBZDwJ/b19w==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: SEOht9K6KAS1NQQBNeG+kzId9Zg=
funkcjonariusz.com/js/jquery-ui.js
167.235.242.21200 OK 13 kB URL HTTP/1.1 funkcjonariusz.com/js/jquery-ui.js
IP 167.235.242.21:0
ASN #24940 Hetzner Online GmbH
Hash c4aefb21b70da4663e45a84381b29eef
10a6a8bceff6e4be74fbb6cc55124c90601724a0
47d687c94921ed1291e73ae7554abfc412c13c46a417395a95a2957202e2b04f
GET /js/jquery-ui.js HTTP/1.1
Host: funkcjonariusz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://funkcjonariusz.com/czy-funkcjonariusz-jest-w-stanie-zastapic-pegasusa.html?domain=oneadjump.com&redirect=/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 04 Dec 2022 02:55:57 GMT
Content-Type: text/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 16 Jun 2020 09:58:04 GMT
ETag: "83b21-5a83094544300-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
fonts.gstatic.com/s/teko/v15/LYjNdG7kmE0gfa19pRtB.woff2
216.58.207.227200 OK 8.0 kB URL HTTP/2 fonts.gstatic.com/s/teko/v15/LYjNdG7kmE0gfa19pRtB.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 8028, version 1.0\012- data
Hash d1cb8a9cdfee750f4c0d9fac96190267
d6d9f58f4dfa7c48357e1e579177c036d277ccc0
28af73fa2da892fde9a7fd25527d44a8a2a38587fac97b3ee49a94eee7ecbd95
GET /s/teko/v15/LYjNdG7kmE0gfa19pRtB.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://funkcjonariusz.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 8028
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 01 Dec 2022 23:06:28 GMT
expires: Fri, 01 Dec 2023 23:06:28 GMT
cache-control: public, max-age=31536000
age: 186570
last-modified: Wed, 27 Apr 2022 16:58:18 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash baaba92c2ccd740f080a25a9ea5cb3ad
3322d5a9fb0b3a2ec83247eac9865234cbcefece
5150dcbc7293378fff4a337fd0f61bdbbf6b4f64bddba6d0fd270be37e81fe07
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 04 Dec 2022 02:55:58 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/teko/v15/LYjCdG7kmE0gdXxZsCpgqGIu.woff2
216.58.207.227200 OK 7.8 kB URL HTTP/2 fonts.gstatic.com/s/teko/v15/LYjCdG7kmE0gdXxZsCpgqGIu.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 7764, version 1.0\012- data
Hash 71f21d68d9c0226f3c4ee520da76d708
1603ca70dd53c03bcb84f85600e8527dde199aa0
8c5e14086b5ff9825c5c78790bfbe4891067a17c6a9dd79c454a661247a2fcb4
GET /s/teko/v15/LYjCdG7kmE0gdXxZsCpgqGIu.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://funkcjonariusz.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 7764
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 30 Nov 2022 07:01:22 GMT
expires: Thu, 30 Nov 2023 07:01:22 GMT
cache-control: public, max-age=31536000
age: 330876
last-modified: Wed, 27 Apr 2022 16:18:18 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/teko/v15/LYjNdG7kmE0gfaN9pQ.woff2
216.58.207.227200 OK 13 kB URL HTTP/2 fonts.gstatic.com/s/teko/v15/LYjNdG7kmE0gfaN9pQ.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 13324, version 1.0\012- data
Hash b4082c888eefa2dca3fe2c9d46a87180
05aeb6c58175f659fe59eaca5a9d3735dd0530e3
352ad1513eeaeec51060f01d5bed32345862ec4d9c0802b81e0a47885951e4b6
GET /s/teko/v15/LYjNdG7kmE0gfaN9pQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://funkcjonariusz.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 13324
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 30 Nov 2022 19:46:04 GMT
expires: Thu, 30 Nov 2023 19:46:04 GMT
cache-control: public, max-age=31536000
age: 284994
last-modified: Wed, 27 Apr 2022 17:05:55 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash baaba92c2ccd740f080a25a9ea5cb3ad
3322d5a9fb0b3a2ec83247eac9865234cbcefece
5150dcbc7293378fff4a337fd0f61bdbbf6b4f64bddba6d0fd270be37e81fe07
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 04 Dec 2022 02:55:58 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/rubik/v21/iJWKBXyIfDnIV7nPrXyi0A.woff2
216.58.207.227200 OK 17 kB URL HTTP/2 fonts.gstatic.com/s/rubik/v21/iJWKBXyIfDnIV7nPrXyi0A.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 17188, version 1.0\012- data
Hash 393d0ca42a3bfbd34fb5b86f67e426ff
989cf4c13645ec6307b8bf399b448113ab6deaa5
90ebbbbaded0b3957104970c5523090c52c7863ad78cce4f9258f576e154397e
GET /s/rubik/v21/iJWKBXyIfDnIV7nPrXyi0A.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://funkcjonariusz.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 17188
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 28 Nov 2022 22:02:35 GMT
expires: Tue, 28 Nov 2023 22:02:35 GMT
cache-control: public, max-age=31536000
age: 449603
last-modified: Mon, 18 Jul 2022 19:21:31 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/rubik/v21/iJWKBXyIfDnIV7nBrXw.woff2
216.58.207.227200 OK 34 kB URL HTTP/2 fonts.gstatic.com/s/rubik/v21/iJWKBXyIfDnIV7nBrXw.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 33580, version 1.0\012- data
Hash 848cd2ecd011428969dc6b90431bc482
6b1a7b562a56bd54510e0f6f95e26babca331a1b
981307dcbbd348f6fb4e3eab184077392f9ee15097ea868f630debefad9044e9
GET /s/rubik/v21/iJWKBXyIfDnIV7nBrXw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://funkcjonariusz.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 33580
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 29 Nov 2022 18:32:08 GMT
expires: Wed, 29 Nov 2023 18:32:08 GMT
cache-control: public, max-age=31536000
age: 375830
last-modified: Mon, 18 Jul 2022 19:32:55 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash baaba92c2ccd740f080a25a9ea5cb3ad
3322d5a9fb0b3a2ec83247eac9865234cbcefece
5150dcbc7293378fff4a337fd0f61bdbbf6b4f64bddba6d0fd270be37e81fe07
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 04 Dec 2022 02:55:58 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash baaba92c2ccd740f080a25a9ea5cb3ad
3322d5a9fb0b3a2ec83247eac9865234cbcefece
5150dcbc7293378fff4a337fd0f61bdbbf6b4f64bddba6d0fd270be37e81fe07
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 04 Dec 2022 02:55:58 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/teko/v15/LYjCdG7kmE0gdVBesCRgqA.woff2
216.58.207.227200 OK 13 kB URL HTTP/2 fonts.gstatic.com/s/teko/v15/LYjCdG7kmE0gdVBesCRgqA.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 13196, version 1.0\012- data
Hash 5b9fce771bd530ab9767e2b5aebd28c1
28ee5935b59df8b2d6876707e1f0f0e6768d2d31
a3bf77e9dea5a047c348fa98ccbeb5d5e07de3541ce0a2dfb243690da964804c
GET /s/teko/v15/LYjCdG7kmE0gdVBesCRgqA.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://funkcjonariusz.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 13196
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 29 Nov 2022 15:49:14 GMT
expires: Wed, 29 Nov 2023 15:49:14 GMT
cache-control: public, max-age=31536000
age: 385604
last-modified: Wed, 27 Apr 2022 16:17:49 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
funkcjonariusz.com/fonts/fa-brands-400.woff2
167.235.242.21200 OK 74 kB URL HTTP/1.1 funkcjonariusz.com/fonts/fa-brands-400.woff2
IP 167.235.242.21:0
ASN #24940 Hetzner Online GmbH
File type Web Open Font Format (Version 2), TrueType, length 74508, version 329.-1049\012- data
Hash 7559b3774a0625e8ca6c0160f8f6cfd8
a403af3337e6207d144b998b9c3bed439af562a9
1f49b8706547682e2c5ed6642a2f2dcbd287da458314b967c60d774aa7edb473
GET /fonts/fa-brands-400.woff2 HTTP/1.1
Host: funkcjonariusz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://funkcjonariusz.com/css/fontawesome-all.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 04 Dec 2022 02:55:58 GMT
Content-Type: font/woff2
Content-Length: 74508
Connection: keep-alive
Last-Modified: Tue, 04 Jun 2019 20:16:52 GMT
ETag: "1230c-58a852950d500"
Accept-Ranges: bytes
funkcjonariusz.com/images/background/footer-bg.png
167.235.242.21200 OK 16 kB URL HTTP/1.1 funkcjonariusz.com/images/background/footer-bg.png
IP 167.235.242.21:0
ASN #24940 Hetzner Online GmbH
File type PNG image data, 1323 x 586, 2-bit colormap, non-interlaced\012- data
Hash 283bb8b50b5fd49acd97ff096539257f
05902de8f07b9be8d6c255e21bf2b6e8462ddc33
7f5b73e4a4771c88e71f764af89090c7a664da09d75f5a88fb2aeb40a2ead418
GET /images/background/footer-bg.png HTTP/1.1
Host: funkcjonariusz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://funkcjonariusz.com/css/style.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 04 Dec 2022 02:55:58 GMT
Content-Type: image/png
Content-Length: 15899
Connection: keep-alive
Last-Modified: Wed, 17 Jun 2020 04:25:32 GMT
ETag: "3e1b-5a8400cf04700"
Accept-Ranges: bytes
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash baaba92c2ccd740f080a25a9ea5cb3ad
3322d5a9fb0b3a2ec83247eac9865234cbcefece
5150dcbc7293378fff4a337fd0f61bdbbf6b4f64bddba6d0fd270be37e81fe07
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 04 Dec 2022 02:55:58 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
funkcjonariusz.com/fonts/Flaticon.ttf?k68a2t
167.235.242.21200 OK 100 kB URL HTTP/1.1 funkcjonariusz.com/fonts/Flaticon.ttf?k68a2t
IP 167.235.242.21:0
ASN #24940 Hetzner Online GmbH
File type TrueType Font data, 11 tables, 1st "OS/2", 14 names, Macintosh, type 1 string, Flaticon \012- data
Hash 924e50961966f6fa3206554c3aa877a9
d89e0d0bad6f3d78cd441c6b8fd475c2a8f4e14c
40eb9f41913b8472b6eb32ca2071ea5529e4c58c9ed6a3aa648740d7084acd92
GET /fonts/Flaticon.ttf?k68a2t HTTP/1.1
Host: funkcjonariusz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://funkcjonariusz.com/css/flaticon.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 04 Dec 2022 02:55:58 GMT
Content-Type: font/ttf
Content-Length: 99812
Connection: keep-alive
Last-Modified: Mon, 01 Mar 2021 11:52:18 GMT
ETag: "185e4-5bc783feac080"
Accept-Ranges: bytes
funkcjonariusz.com/fonts/fa-solid-900.woff2
167.235.242.21200 OK 75 kB URL HTTP/1.1 funkcjonariusz.com/fonts/fa-solid-900.woff2
IP 167.235.242.21:0
ASN #24940 Hetzner Online GmbH
File type Web Open Font Format (Version 2), TrueType, length 75440, version 329.-1049\012- data
Hash b5cf8ae26748570d8fb95a47f46b69e1
07bed153d47f9129a944ee54dd72952deed074c8
cd398be1a91817126cef10224738e624358edf6f08043abad7e60c1aaeccc8d0
GET /fonts/fa-solid-900.woff2 HTTP/1.1
Host: funkcjonariusz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://funkcjonariusz.com/css/fontawesome-all.css
Cookie: cb-enabled=enabled
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 04 Dec 2022 02:55:58 GMT
Content-Type: font/woff2
Content-Length: 75440
Connection: keep-alive
Last-Modified: Tue, 04 Jun 2019 20:16:52 GMT
ETag: "126b0-58a852950d500"
Accept-Ranges: bytes
funkcjonariusz.com/images/favicon.png
167.235.242.21200 OK 2.4 kB URL HTTP/1.1 funkcjonariusz.com/images/favicon.png
IP 167.235.242.21:0
ASN #24940 Hetzner Online GmbH
File type PNG image data, 48 x 48, 8-bit/color RGBA, non-interlaced\012- data
Hash 072c4d320533f6f4e64d8a21602bdbf1
dffaeede5db766972be767292dcbc5e621366d8e
71f112701c162b85445dbaac4e91a5b030bd3cb11ac4962990d5c3836cab09b4
GET /images/favicon.png HTTP/1.1
Host: funkcjonariusz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://funkcjonariusz.com/czy-funkcjonariusz-jest-w-stanie-zastapic-pegasusa.html?domain=oneadjump.com&redirect=/
Cookie: cb-enabled=enabled
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 04 Dec 2022 02:55:58 GMT
Content-Type: image/png
Content-Length: 2414
Connection: keep-alive
Last-Modified: Tue, 09 Jun 2020 13:34:30 GMT
ETag: "96e-5a7a6c9774580"
Accept-Ranges: bytes
www.google-analytics.com/analytics.js
142.250.74.46200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP 142.250.74.46:0
File type ASCII text, with very long lines (1325)
Hash 47e6f374ca946fddd5b59871b325736c
baa9282efc8785e84d247c3bff518eaa45f101c4
16580b5c87c58e5702e411f1888fdef511094e4cd6d62bb47d16291ffb25985e
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://funkcjonariusz.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20039
date: Sun, 04 Dec 2022 02:46:55 GMT
expires: Sun, 04 Dec 2022 04:46:55 GMT
cache-control: public, max-age=7200
age: 543
last-modified: Tue, 27 Sep 2022 22:01:05 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
globessl.ocsp.sectigo.com/
172.64.155.188200 OK 472 B URL HTTP/1.1 globessl.ocsp.sectigo.com/
IP 172.64.155.188:0
Hash 3d2edbd426053fdedfdd0d64195bb16c
e947c9f39331f72af42b5679e833b1d40bdfe072
e01f8a3a3226eaf70afa3725a303e6e330011902c4f4df600bb4d556243ee520
POST / HTTP/1.1
Host: globessl.ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 04 Dec 2022 02:55:58 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Thu, 01 Dec 2022 10:35:48 GMT
Expires: Thu, 08 Dec 2022 10:35:47 GMT
Etag: "e947c9f39331f72af42b5679e833b1d40bdfe072"
Cache-Control: max-age=372588,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 774144250ddab52d-OSL
funkcjonariusz.disqus.com/embed.js
199.232.196.134200 OK 26 kB URL HTTP/1.1 funkcjonariusz.disqus.com/embed.js
IP 199.232.196.134:0
File type ASCII text, with very long lines (32006)
Hash 8ebc044baea240bfdc18e9398fe01184
1f5034bd4ffc4230b4d2c56c093c127648b5f69e
0254a15d97b88a23f2a059cefa98a85bf66ffef189041874210d91750b190e39
GET /embed.js HTTP/1.1
Host: funkcjonariusz.disqus.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://funkcjonariusz.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Connection: keep-alive
Content-Length: 25624
Server: openresty
Content-Type: application/javascript; charset=utf-8
X-Service: router
Content-Encoding: gzip
Date: Sun, 04 Dec 2022 02:55:58 GMT
Age: 0
Vary: Accept-Encoding
Cache-Control: private, max-age=60
Strict-Transport-Security: max-age=300; includeSubdomains
Cross-Origin-Resource-Policy: cross-origin
Link: <https://disqus.com>; rel=preconnect, <https://c.disquscdn.com>; rel=preconnect
globessl.ocsp.sectigo.com/
172.64.155.188200 OK 471 B URL HTTP/1.1 globessl.ocsp.sectigo.com/
IP 172.64.155.188:0
Hash 883a09aba241005f4dbd74a214c8c6e1
3e206dbb03e3068f8fd6cd2c55d7ea7468a2710c
5baae88153a4123e9fda3bc530fab641e3894bb83e928ea316951b50df1f5d8f
POST / HTTP/1.1
Host: globessl.ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 04 Dec 2022 02:55:58 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Thu, 01 Dec 2022 05:51:46 GMT
Expires: Thu, 08 Dec 2022 05:51:45 GMT
Etag: "3e206dbb03e3068f8fd6cd2c55d7ea7468a2710c"
Cache-Control: max-age=355546,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 774144288ee6b52d-OSL
payload.piwik.pro/ppms.php?action_name=Czy%20Funkcjonariusz%20jest%20w%20stanie%20zast%C4%85pi%C4%87%20Pegasusa%3F%20-%20Funkcjonariusz&idsite=403cd276-3e9a-41e2-bb85-5ab3bb41b327&rec=1&r=292132&h=2&m=55&s=56&url=https%3A%2F%2Ffunkcjonariusz.com%2Fczy-funkcjonariusz-jest-w-stanie-zastapic-pegasusa.html%3Fdomain%3Doneadjump.com%26redirect%3D%2F&_id=e08f69f26a0d62ac&_idts=1670122556&_idvc=1&_idn=0&_viewts=1670122556&send_image=0&ts_n=jstc_tm&ts_v=2.8.3&cookie=1&res=1280x1024>_ms=53&pv_id=imP5h6
20.79.102.66202 Accepted 0 B URL HTTP/2 payload.piwik.pro/ppms.php?action_name=Czy%20Funkcjonariusz%20jest%20w%20stanie%20zast%C4%85pi%C4%87%20Pegasusa%3F%20-%20Funkcjonariusz&idsite=403cd276-3e9a-41e2-bb85-5ab3bb41b327&rec=1&r=292132&h=2&m=55&s=56&url=https%3A%2F%2Ffunkcjonariusz.com%2Fczy-funkcjonariusz-jest-w-stanie-zastapic-pegasusa.html%3Fdomain%3Doneadjump.com%26redirect%3D%2F&_id=e08f69f26a0d62ac&_idts=1670122556&_idvc=1&_idn=0&_viewts=1670122556&send_image=0&ts_n=jstc_tm&ts_v=2.8.3&cookie=1&res=1280x1024>_ms=53&pv_id=imP5h6
IP 20.79.102.66:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /ppms.php?action_name=Czy%20Funkcjonariusz%20jest%20w%20stanie%20zast%C4%85pi%C4%87%20Pegasusa%3F%20-%20Funkcjonariusz&idsite=403cd276-3e9a-41e2-bb85-5ab3bb41b327&rec=1&r=292132&h=2&m=55&s=56&url=https%3A%2F%2Ffunkcjonariusz.com%2Fczy-funkcjonariusz-jest-w-stanie-zastapic-pegasusa.html%3Fdomain%3Doneadjump.com%26redirect%3D%2F&_id=e08f69f26a0d62ac&_idts=1670122556&_idvc=1&_idn=0&_viewts=1670122556&send_image=0&ts_n=jstc_tm&ts_v=2.8.3&cookie=1&res=1280x1024>_ms=53&pv_id=imP5h6 HTTP/1.1
Host: payload.piwik.pro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded; charset=utf-8
Content-Length: 472
Origin: https://funkcjonariusz.com
Connection: keep-alive
Referer: https://funkcjonariusz.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 202 Accepted
content-length: 0
content-type: text/html
access-control-allow-origin: https://funkcjonariusz.com
content-security-policy: frame-ancestors 'none'
cache-control: no-store
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
date: Sun, 04 Dec 2022 02:55:58 GMT
x-content-type-options: nosniff
referrer-policy: origin
x-frame-options: sameorigin
X-Firefox-Spdy: h2
disqus.com/embed/comments/?base=default&f=funkcjonariusz&t_u=https%3A%2F%2Ffunkcjonariusz.com%2Fczy-funkcjonariusz-jest-w-stanie-zastapic-pegasusa.html%3Fdomain%3Doneadjump.com%26redirect%3D%2F&t_e=Funkcjonariusz&t_d=Czy%20Funkcjonariusz%20jest%20w%20stanie%20zast%C4%85pi%C4%87%20Pegasusa%3F&t_t=Funkcjonariusz&s_o=default
151.101.192.134200 OK 3.0 kB URL HTTP/1.1 disqus.com/embed/comments/?base=default&f=funkcjonariusz&t_u=https%3A%2F%2Ffunkcjonariusz.com%2Fczy-funkcjonariusz-jest-w-stanie-zastapic-pegasusa.html%3Fdomain%3Doneadjump.com%26redirect%3D%2F&t_e=Funkcjonariusz&t_d=Czy%20Funkcjonariusz%20jest%20w%20stanie%20zast%C4%85pi%C4%87%20Pegasusa%3F&t_t=Funkcjonariusz&s_o=default
IP 151.101.192.134:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (3446)
Hash 41e420c32e68a9719b92ed8b764c3f33
2845f378e7bc0866211145cdc61744b6f41b1903
db4dc14176332f4917a5eda2c6b599b29fb4e9afd6de55c34da4d3168ad373c5
GET /embed/comments/?base=default&f=funkcjonariusz&t_u=https%3A%2F%2Ffunkcjonariusz.com%2Fczy-funkcjonariusz-jest-w-stanie-zastapic-pegasusa.html%3Fdomain%3Doneadjump.com%26redirect%3D%2F&t_e=Funkcjonariusz&t_d=Czy%20Funkcjonariusz%20jest%20w%20stanie%20zast%C4%85pi%C4%87%20Pegasusa%3F&t_t=Funkcjonariusz&s_o=default HTTP/1.1
Host: disqus.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://funkcjonariusz.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Connection: keep-alive
Content-Length: 3009
Server: nginx
Content-Type: text/html; charset=utf-8
Content-Security-Policy: script-src https://*.twitter.com:* https://www.gstatic.com/recaptcha/ https://a.disquscdn.com https://c.disquscdn.com c.disquscdn.com https://*.services.disqus.com:* https://cdn.boomtrain.com/p13n/ https://com-disqus.netmng.com:* 'unsafe-inline' https://referrer.disqus.com/juggler/ https://connect.facebook.net/en_US/sdk.js https://cdn.syndication.twimg.com/tweets.json https://apis.google.com https://www.google.com/recaptcha/ https://cf.ignitionone.com:* https://disqus.com
Last-Modified: Sun, 12 Jun 2022 10:44:23 GMT
ETag: W/"lounge:view:9214356404.65ba410ba57f30dff32fb6cc6d74205d.2"
Link: <https://c.disquscdn.com>;rel=preconnect,<https://c.disquscdn.com>;rel=dns-prefetch
Cache-Control: stale-if-error=3600, s-stalewhilerevalidate=3600, stale-while-revalidate=30, no-cache, must-revalidate, public, s-maxage=5
p3p: CP="DSP IDC CUR ADM DELi STP NAV COM UNI INT PHY DEM"
Referrer-Policy: no-referrer-when-downgrade
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Content-Encoding: gzip
Date: Sun, 04 Dec 2022 02:55:58 GMT
Age: 0
Vary: Accept-Encoding
Cross-Origin-Resource-Policy: cross-origin
Strict-Transport-Security: max-age=300; includeSubdomains
region1.google-analytics.com/g/collect?v=2&tid=G-R9G8ZYDTDD>m=2oebu0&_p=55223445&cid=315066460.1670122556&ul=en-us&sr=1280x1024&_s=1&sid=1670122556&sct=1&seg=0&dl=https%3A%2F%2Ffunkcjonariusz.com%2Fczy-funkcjonariusz-jest-w-stanie-zastapic-pegasusa.html%3Fdomain%3Doneadjump.com%26redirect%3D%2F&dt=Czy%20Funkcjonariusz%20jest%20w%20stanie%20zast%C4%85pi%C4%87%20Pegasusa%3F%20-%20Funkcjonariusz&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1
216.239.32.36204 No Content 0 B URL HTTP/2 region1.google-analytics.com/g/collect?v=2&tid=G-R9G8ZYDTDD>m=2oebu0&_p=55223445&cid=315066460.1670122556&ul=en-us&sr=1280x1024&_s=1&sid=1670122556&sct=1&seg=0&dl=https%3A%2F%2Ffunkcjonariusz.com%2Fczy-funkcjonariusz-jest-w-stanie-zastapic-pegasusa.html%3Fdomain%3Doneadjump.com%26redirect%3D%2F&dt=Czy%20Funkcjonariusz%20jest%20w%20stanie%20zast%C4%85pi%C4%87%20Pegasusa%3F%20-%20Funkcjonariusz&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1
IP 216.239.32.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-R9G8ZYDTDD>m=2oebu0&_p=55223445&cid=315066460.1670122556&ul=en-us&sr=1280x1024&_s=1&sid=1670122556&sct=1&seg=0&dl=https%3A%2F%2Ffunkcjonariusz.com%2Fczy-funkcjonariusz-jest-w-stanie-zastapic-pegasusa.html%3Fdomain%3Doneadjump.com%26redirect%3D%2F&dt=Czy%20Funkcjonariusz%20jest%20w%20stanie%20zast%C4%85pi%C4%87%20Pegasusa%3F%20-%20Funkcjonariusz&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1 HTTP/1.1
Host: region1.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://funkcjonariusz.com
Connection: keep-alive
Referer: https://funkcjonariusz.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: https://funkcjonariusz.com
date: Sun, 04 Dec 2022 02:55:58 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
c.disquscdn.com/next/embed/lounge.load.9f0289af4c4be9a62480679574e9ee97.js
143.204.55.37200 OK 494 B URL HTTP/2 c.disquscdn.com/next/embed/lounge.load.9f0289af4c4be9a62480679574e9ee97.js
IP 143.204.55.37:0
File type ASCII text, with very long lines (958), with no line terminators
Hash 1dc31dd780b8eec6bf5628735408ad93
3cd0f3807e52beb7cea3c5aeff5e913f38368e76
bc0202e8cadcab5d405487aed6b66ed77a184c0fe10a66e0c12ccd4dd0c1d444
GET /next/embed/lounge.load.9f0289af4c4be9a62480679574e9ee97.js HTTP/1.1
Host: c.disquscdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://disqus.com
Connection: keep-alive
Referer: https://disqus.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
content-length: 494
date: Thu, 01 Dec 2022 19:09:18 GMT
server: nginx
last-modified: Thu, 01 Dec 2022 19:00:29 GMT
etag: "6388f9cd-1ee"
content-encoding: gzip
x-served-by: static-web-1
x-cache-hits: 0
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
expires: Fri, 01 Dec 2023 19:09:18 GMT
cache-control: max-age=31536000, public, immutable, no-transform
access-control-allow-origin: *
timing-allow-origin: *
surrogate-key: next
cross-origin-resource-policy: cross-origin
x-cache: Hit from cloudfront
via: 1.1 50584ad285d5f627ddebae74efdd0770.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: Y54TZfstREZMusLzCOf_Sh9MOzSfO6sDKHhDLh0BjTlaZ0fhQK2ovw==
age: 200801
X-Firefox-Spdy: h2
c.disquscdn.com/next/embed/common.bundle.6dd0bd4924a2cd12ee7c955bcb3718e4.js
143.204.55.37200 OK 95 kB URL HTTP/2 c.disquscdn.com/next/embed/common.bundle.6dd0bd4924a2cd12ee7c955bcb3718e4.js
IP 143.204.55.37:0
File type ASCII text, with very long lines (32023)
Hash a58f398edd4052a2f77d20c403665265
76e10bfca2fbade39b914b9d31e2a50f1fa82ac6
9d119919293b66a0d450052b26c1b025e45c85b6f961ad114cd030a2e4f8e7c3
GET /next/embed/common.bundle.6dd0bd4924a2cd12ee7c955bcb3718e4.js HTTP/1.1
Host: c.disquscdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://disqus.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
content-length: 94892
date: Thu, 01 Dec 2022 15:48:39 GMT
server: nginx
last-modified: Wed, 30 Nov 2022 00:18:36 GMT
etag: "6386a15c-172ac"
content-encoding: gzip
x-served-by: static-web-2
x-cache-hits: 0
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
expires: Fri, 01 Dec 2023 15:48:39 GMT
cache-control: max-age=31536000, public, immutable, no-transform
access-control-allow-origin: *
timing-allow-origin: *
surrogate-key: next
cross-origin-resource-policy: cross-origin
x-cache: Hit from cloudfront
via: 1.1 a034aae43a19aef875fa395182990970.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: lkQNEJXp0yjHtiSmI_QyMTXiPckJPdJwN9FTr90JoA3skS8pCFoKHg==
age: 212840
X-Firefox-Spdy: h2
c.disquscdn.com/next/embed/styles/lounge.b733a853ec7f571f5314b18dbe0649f5.css
143.204.55.37200 OK 31 kB URL HTTP/2 c.disquscdn.com/next/embed/styles/lounge.b733a853ec7f571f5314b18dbe0649f5.css
IP 143.204.55.37:0
File type ASCII text, with very long lines (65469)
Hash ea4ebb0786ad9e6d85daf9444a6f418a
c4dfdd8bdd732ec93dd16597c8814181759aefe1
8657d669f9f411befcd3ac2cee3aa67331a5c1595606975f4b40df27b47c33e3
GET /next/embed/styles/lounge.b733a853ec7f571f5314b18dbe0649f5.css HTTP/1.1
Host: c.disquscdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://disqus.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/css; charset=utf-8
content-length: 30682
date: Thu, 01 Dec 2022 19:09:18 GMT
server: nginx
last-modified: Thu, 01 Dec 2022 19:00:29 GMT
etag: "6388f9cd-77da"
content-encoding: gzip
x-served-by: static-web-1
x-cache-hits: 0
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
expires: Fri, 01 Dec 2023 19:09:18 GMT
cache-control: max-age=31536000, public, immutable, no-transform
access-control-allow-origin: *
timing-allow-origin: *
surrogate-key: next
cross-origin-resource-policy: cross-origin
x-cache: Hit from cloudfront
via: 1.1 a034aae43a19aef875fa395182990970.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: Vom26nGDh5Rmy38qG9Lvwsgb-v_Q1wcvq7BwgI23JTsM2mU9vlIJzA==
age: 200801
X-Firefox-Spdy: h2
c.disquscdn.com/next/embed/lounge.bundle.62fb92af5c9511c5dc81068eb508a621.js
143.204.55.37200 OK 129 kB URL HTTP/2 c.disquscdn.com/next/embed/lounge.bundle.62fb92af5c9511c5dc81068eb508a621.js
IP 143.204.55.37:0
File type ASCII text, with very long lines (32010)
Size 129 kB (128680 bytes)
Hash 7110001527d9c195f598b6f80285890b
28abca73749e57f98679ce63c1d26cd64ea57fca
1687e857e1d1406d96a2ab79b2a5e389e37264a35a423c94c963798716b01da7
GET /next/embed/lounge.bundle.62fb92af5c9511c5dc81068eb508a621.js HTTP/1.1
Host: c.disquscdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://disqus.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
content-length: 128680
date: Tue, 29 Nov 2022 16:11:04 GMT
server: nginx
last-modified: Fri, 25 Nov 2022 05:53:01 GMT
etag: "6380583d-1f6a8"
content-encoding: gzip
x-served-by: static-web-2
x-cache-hits: 0
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
expires: Wed, 29 Nov 2023 16:11:04 GMT
cache-control: max-age=31536000, public, immutable, no-transform
access-control-allow-origin: *
timing-allow-origin: *
surrogate-key: next
cross-origin-resource-policy: cross-origin
x-cache: Hit from cloudfront
via: 1.1 a034aae43a19aef875fa395182990970.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: diDK4T94ibL-mjcAY6Qlv5lRk61KnYFQVORT-KtHTtVjVvur70_7-A==
age: 384295
X-Firefox-Spdy: h2
c.disquscdn.com/next/current/embed/lang/pl.js
143.204.55.37200 OK 8.8 kB URL HTTP/2 c.disquscdn.com/next/current/embed/lang/pl.js
IP 143.204.55.37:0
File type Unicode text, UTF-8 text, with very long lines (22165), with no line terminators
Hash e6c27d65dc5b8ce6a632b245a0be8c09
405a7068138eb6402e0f5452d523b5cfe2010031
0a7a28febd75267ed9d78e93d776720f5ecbed89ff4ffc3d4955f675d3e65678
GET /next/current/embed/lang/pl.js HTTP/1.1
Host: c.disquscdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://disqus.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
content-length: 8790
server: nginx
last-modified: Thu, 01 Dec 2022 19:00:29 GMT
content-encoding: gzip
x-served-by: static-web-2
x-cache-hits: 0
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
date: Sun, 04 Dec 2022 02:54:35 GMT
expires: Sun, 04 Dec 2022 02:58:16 GMT
cache-control: max-age=300, public
etag: "6388f9cd-2256"
x-cache: Hit from cloudfront
via: 1.1 a034aae43a19aef875fa395182990970.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: yrZVsMbn2XBFfo2cSy9QKCVsmC9dvcnAnyl4uNuVvI3U3uH_JWqpHQ==
age: 163
X-Firefox-Spdy: h2
c.disquscdn.com/next/embed/assets/img/svg-sprite.4da5413f5086c5755b46094b813dbfcd.svg
143.204.55.37200 OK 13 kB URL HTTP/2 c.disquscdn.com/next/embed/assets/img/svg-sprite.4da5413f5086c5755b46094b813dbfcd.svg
IP 143.204.55.37:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document, ASCII text, with very long lines (13079), with no line terminators
Hash 4da5413f5086c5755b46094b813dbfcd
87669f231ce245cdd9b7d80ebf8194e2ae62e7b1
3270642c89180c12db93775e2a774b6dadd9bd98cffc963075c85afd2c17b6e4
GET /next/embed/assets/img/svg-sprite.4da5413f5086c5755b46094b813dbfcd.svg HTTP/1.1
Host: c.disquscdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://c.disquscdn.com/next/embed/styles/lounge.b733a853ec7f571f5314b18dbe0649f5.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/svg+xml; charset=utf-8
content-length: 13079
date: Fri, 04 Nov 2022 03:33:20 GMT
server: nginx
last-modified: Wed, 02 Nov 2022 16:07:12 GMT
etag: "636295b0-3317"
x-served-by: static-web-2
x-cache-hits: 0
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
expires: Sat, 04 Nov 2023 03:33:20 GMT
cache-control: max-age=31536000, public, immutable, no-transform
access-control-allow-origin: *
timing-allow-origin: *
surrogate-key: next
cross-origin-resource-policy: cross-origin
accept-ranges: bytes
x-cache: Hit from cloudfront
via: 1.1 a034aae43a19aef875fa395182990970.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: SFBExlUaqrbzmt3A74vHu7v6KcaPMozK6iBsfulFxCkxPJKDYfXhyw==
age: 2589759
X-Firefox-Spdy: h2
c.disquscdn.com/next/embed/assets/img/loader.ba7c86e8b4b6135bb668d05223f8f127.gif
143.204.55.37200 OK 3.0 kB URL HTTP/2 c.disquscdn.com/next/embed/assets/img/loader.ba7c86e8b4b6135bb668d05223f8f127.gif
IP 143.204.55.37:0
File type GIF image data, version 87a, 62 x 20\012- data
Hash ba7c86e8b4b6135bb668d05223f8f127
ae07a576af9eab682281921075436798438e902e
4c4491dcfa94cb46fb73742fc2caf49a1cd59027304af1830c7dc6ce1889857c
GET /next/embed/assets/img/loader.ba7c86e8b4b6135bb668d05223f8f127.gif HTTP/1.1
Host: c.disquscdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://c.disquscdn.com/next/embed/styles/lounge.b733a853ec7f571f5314b18dbe0649f5.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/gif
content-length: 2971
date: Mon, 31 Oct 2022 00:55:21 GMT
server: nginx
last-modified: Thu, 27 Oct 2022 21:17:31 GMT
etag: "635af56b-b9b"
x-served-by: static-web-1
x-cache-hits: 0
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
expires: Tue, 31 Oct 2023 00:55:21 GMT
cache-control: max-age=31536000, public, immutable, no-transform
access-control-allow-origin: *
timing-allow-origin: *
surrogate-key: next
cross-origin-resource-policy: cross-origin
accept-ranges: bytes
x-cache: Hit from cloudfront
via: 1.1 a034aae43a19aef875fa395182990970.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: ghUKl4WYwR5ygPAtdKJXJoa479GbwX2jZMJFcoBmYuB6HRX8gjFkWg==
age: 2944838
X-Firefox-Spdy: h2
c.disquscdn.com/next/embed/assets/font/icons.4cc7a703d2fdfe684151ff8ac24d45f1.woff2
143.204.55.37200 OK 7.9 kB URL HTTP/2 c.disquscdn.com/next/embed/assets/font/icons.4cc7a703d2fdfe684151ff8ac24d45f1.woff2
IP 143.204.55.37:0
File type Web Open Font Format (Version 2), TrueType, length 7900, version 1.0\012- data
Hash 4cc7a703d2fdfe684151ff8ac24d45f1
046adee74e5ce76db11491906a21c09399391571
f2a341fc815d45c21da726d4c843c2c5d3e1f333465347c3c75d040d556df4e5
GET /next/embed/assets/font/icons.4cc7a703d2fdfe684151ff8ac24d45f1.woff2 HTTP/1.1
Host: c.disquscdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://disqus.com
Connection: keep-alive
Referer: https://c.disquscdn.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/octet-stream
content-length: 7900
date: Sat, 05 Nov 2022 01:01:02 GMT
server: nginx
last-modified: Wed, 02 Nov 2022 16:07:12 GMT
etag: "636295b0-1edc"
x-served-by: static-web-2
x-cache-hits: 0
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
expires: Sun, 05 Nov 2023 01:01:02 GMT
cache-control: max-age=31536000, public, immutable, no-transform
access-control-allow-origin: *
timing-allow-origin: *
surrogate-key: next
cross-origin-resource-policy: cross-origin
accept-ranges: bytes
x-cache: Hit from cloudfront
via: 1.1 50584ad285d5f627ddebae74efdd0770.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: ySrPFgUEARWpC8khM0OL-B8NTqHDwT-tMfN1ONlTZsRno7N3KOF7-A==
age: 2512497
X-Firefox-Spdy: h2
c.disquscdn.com/next/embed/assets/img/sprite.ad630a07080a45451f139a7487853ff8.png
143.204.55.37200 OK 1.8 kB URL HTTP/2 c.disquscdn.com/next/embed/assets/img/sprite.ad630a07080a45451f139a7487853ff8.png
IP 143.204.55.37:0
File type PNG image data, 172 x 81, 8-bit colormap, non-interlaced\012- data
Hash ad630a07080a45451f139a7487853ff8
c2673d7404fc947fab20eed21416f9656149018d
9714221c828961b20f45a782c3281c0596f6652cfe1299bee18097f98e8fb7b3
GET /next/embed/assets/img/sprite.ad630a07080a45451f139a7487853ff8.png HTTP/1.1
Host: c.disquscdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://c.disquscdn.com/next/embed/styles/lounge.b733a853ec7f571f5314b18dbe0649f5.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 1763
date: Sat, 05 Nov 2022 01:16:36 GMT
server: nginx
last-modified: Wed, 02 Nov 2022 16:07:12 GMT
etag: "636295b0-6e3"
x-served-by: static-web-1
x-cache-hits: 0
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
expires: Sun, 05 Nov 2023 01:16:36 GMT
cache-control: max-age=31536000, public, immutable, no-transform
access-control-allow-origin: *
timing-allow-origin: *
surrogate-key: next
cross-origin-resource-policy: cross-origin
accept-ranges: bytes
x-cache: Hit from cloudfront
via: 1.1 a034aae43a19aef875fa395182990970.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: SkbPPac66CwXRsnhnVEK_8DuODD7tRgmZ9FQMtHEknMKK52YvRUZxw==
age: 2511563
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 83e0936435ad95a15c9ec5ff9520f4fe
a8225ee0d8ae117f977f7ff817c342c62e91b5a9
ef0f5b2ab2055446d4ea8b738f605c3bf835cf72e872d6a9c9a6c9b2917737e7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EF0F5B2AB2055446D4EA8B738F605C3BF835CF72E872D6A9C9A6C9B2917737E7"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3191
Expires: Sun, 04 Dec 2022 03:49:10 GMT
Date: Sun, 04 Dec 2022 02:55:59 GMT
Connection: keep-alive
c.disquscdn.com/next/embed/alfie_v4.63f1ab6d6b9d5807dc0c94ef3fe0b851.js
143.204.55.37200 OK 27 kB URL HTTP/2 c.disquscdn.com/next/embed/alfie_v4.63f1ab6d6b9d5807dc0c94ef3fe0b851.js
IP 143.204.55.37:0
File type ASCII text, with very long lines (32024)
Hash 0c2785ae737e4a3a6baf270c42954aaa
ba03fa7243d6e4f184c3f2f05f733f5f40b96cc3
75310b8dcb511e824684c40202fb6edb67136e7b747e2d42c71a628bce42c2f2
GET /next/embed/alfie_v4.63f1ab6d6b9d5807dc0c94ef3fe0b851.js HTTP/1.1
Host: c.disquscdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://funkcjonariusz.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
content-length: 26578
date: Fri, 28 Oct 2022 16:37:58 GMT
server: nginx
last-modified: Thu, 27 Oct 2022 21:17:31 GMT
etag: "635af56b-67d2"
content-encoding: gzip
x-served-by: static-web-2
x-cache-hits: 0
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
expires: Sat, 28 Oct 2023 16:37:58 GMT
cache-control: max-age=31536000, public, immutable, no-transform
access-control-allow-origin: *
timing-allow-origin: *
surrogate-key: next
cross-origin-resource-policy: cross-origin
x-cache: Hit from cloudfront
via: 1.1 a034aae43a19aef875fa395182990970.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: -qLkQp9rpe2JWyR-FMXvOiICDM6HoPbkEjlqPoOOvBtFmu7q_gNnxw==
age: 3147481
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 83e0936435ad95a15c9ec5ff9520f4fe
a8225ee0d8ae117f977f7ff817c342c62e91b5a9
ef0f5b2ab2055446d4ea8b738f605c3bf835cf72e872d6a9c9a6c9b2917737e7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EF0F5B2AB2055446D4EA8B738F605C3BF835CF72E872D6A9C9A6C9B2917737E7"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3191
Expires: Sun, 04 Dec 2022 03:49:10 GMT
Date: Sun, 04 Dec 2022 02:55:59 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 83e0936435ad95a15c9ec5ff9520f4fe
a8225ee0d8ae117f977f7ff817c342c62e91b5a9
ef0f5b2ab2055446d4ea8b738f605c3bf835cf72e872d6a9c9a6c9b2917737e7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EF0F5B2AB2055446D4EA8B738F605C3BF835CF72E872D6A9C9A6C9B2917737E7"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3191
Expires: Sun, 04 Dec 2022 03:49:10 GMT
Date: Sun, 04 Dec 2022 02:55:59 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8f00caab-057c-4cc2-a163-fd0bb4d0b5f7.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8f00caab-057c-4cc2-a163-fd0bb4d0b5f7.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 1521243a6fc065bb631bfbde22886fa2
527220e4e8cd1065ce05fcd0694d0d703d817e2e
b83ebf768bbfb34f49d5467f3dfb43ceb3ca3d30d3454e6f37db9aef72d7689a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8f00caab-057c-4cc2-a163-fd0bb4d0b5f7.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11482
x-amzn-requestid: d1db05ab-bd5d-4ad4-96b4-8f439152e435
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: clssNEeAoAMFh_g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638bc181-0221c53842a2f5ef071e8071;Sampled=0
x-amzn-remapped-date: Sat, 03 Dec 2022 21:37:05 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: UZ5kblxfN8fkp55YeSpUA55GzDxZgsLpFZrYTsdJBihf53HLCN0hTA==
via: 1.1 28a7186077f9b5270d98dd053f31303e.cloudfront.net (CloudFront), 1.1 36810aa1793ee589dc8c194860296078.cloudfront.net (CloudFront), 1.1 google
date: Sat, 03 Dec 2022 22:17:35 GMT
age: 16704
etag: "527220e4e8cd1065ce05fcd0694d0d703d817e2e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
a.disquscdn.com/1668443441/images/noavatar92.png
199.232.198.49200 OK 1.6 kB URL HTTP/2 a.disquscdn.com/1668443441/images/noavatar92.png
IP 199.232.198.49:0
File type PNG image data, 92 x 92, 8-bit/color RGB, non-interlaced\012- data
Hash 675fb4b91ca717db030507f2d84bcfdf
c8728df74487f907230358a1b08ae1a1b25f9ed4
36ef66124133ca33c8b44c487293c3180e5ab681ff3cad3c728ea4f894ec3444
GET /1668443441/images/noavatar92.png HTTP/1.1
Host: a.disquscdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://disqus.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/png
server: nginx
last-modified: Fri, 26 Feb 2021 20:50:09 GMT
etag: "60395f01-66c"
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
expires: Sat, 17 Dec 2022 15:17:21 GMT
cache-control: max-age=2592000
cross-origin-resource-policy: cross-origin
x-amz-cf-pop: ARN56-P1
x-amz-cf-id: 5jOcp7ZrxH_QP-anBdpxd4jymgR2jnU0w8efi16t4yWllUlIDXje4w==
date: Sun, 04 Dec 2022 02:55:59 GMT
age: 1424318
strict-transport-security: max-age=300; includeSubdomains
content-length: 1644
X-Firefox-Spdy: h2
disqus.com/api/3.0/forums/details?forum=funkcjonariusz&attach=forumFeatures&api_key=E8Uh5l5fHZ6gD8U3KycjAIAk46f68Zw7C6eW8WSjZvCLXebZ7p0r1yrYDrLilk2F
151.101.192.134200 OK 3.6 kB URL HTTP/1.1 disqus.com/api/3.0/forums/details?forum=funkcjonariusz&attach=forumFeatures&api_key=E8Uh5l5fHZ6gD8U3KycjAIAk46f68Zw7C6eW8WSjZvCLXebZ7p0r1yrYDrLilk2F
IP 151.101.192.134:0
File type JSON data\012- , ASCII text, with very long lines (3633), with no line terminators
Hash c943d24bfb5d6caca7876cea5bd68666
25909a6d63ab6ad3f8ebbf9a91f652437bd4db0f
bb4608b0d980e90c1f0d57aa09e07c4115eb693edeadb83c82e181fc5fafceda
GET /api/3.0/forums/details?forum=funkcjonariusz&attach=forumFeatures&api_key=E8Uh5l5fHZ6gD8U3KycjAIAk46f68Zw7C6eW8WSjZvCLXebZ7p0r1yrYDrLilk2F HTTP/1.1
Host: disqus.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://disqus.com/embed/comments/?base=default&f=funkcjonariusz&t_u=https%3A%2F%2Ffunkcjonariusz.com%2Fczy-funkcjonariusz-jest-w-stanie-zastapic-pegasusa.html%3Fdomain%3Doneadjump.com%26redirect%3D%2F&t_e=Funkcjonariusz&t_d=Czy%20Funkcjonariusz%20jest%20w%20stanie%20zast%C4%85pi%C4%87%20Pegasusa%3F&t_t=Funkcjonariusz&s_o=default
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Connection: keep-alive
Content-Length: 3633
Server: nginx
Content-Type: application/json
X-Frame-Options: SAMEORIGIN
p3p: CP="DSP IDC CUR ADM DELi STP NAV COM UNI INT PHY DEM"
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Date: Sun, 04 Dec 2022 02:55:59 GMT
Age: 0
Vary: Origin, Cookie
Cross-Origin-Resource-Policy: cross-origin
Strict-Transport-Security: max-age=300; includeSubdomains
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4d571e0e-b14e-436b-8156-2e49aad75d4f.png
34.120.237.76200 OK 16 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4d571e0e-b14e-436b-8156-2e49aad75d4f.png
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 14dcca2a9c4792d835ee709bcd947402
1d702df3a64258628f4124eafd580695f2d350af
da01dcd8fef7c50bdb6f7a8a6a4955694092f479df3dba72f7fa69d7280d07b2
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4d571e0e-b14e-436b-8156-2e49aad75d4f.png HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 16143
x-amzn-requestid: dc86fad4-4e53-42c9-9b0a-5e4d2cfcd087
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cdGyLGqmoAMFnaA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638851a7-0ea324b31e8c6578098b8ab9;Sampled=0
x-amzn-remapped-date: Thu, 01 Dec 2022 07:03:03 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: KHd4ajJWl-8TDH5HGbkuJXI4NL6I83IwSUBKzfq85cxpyRH_LGl6OA==
via: 1.1 4f87745990545c1ac0195c157e1668f8.cloudfront.net (CloudFront), 1.1 b2f9564ebf9c745cc2ceae96d434977e.cloudfront.net (CloudFront), 1.1 google
date: Sat, 03 Dec 2022 07:43:43 GMT
age: 69136
etag: "1d702df3a64258628f4124eafd580695f2d350af"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb8cb98e4-6956-416c-82e2-269c1c3a9ea7.jpeg
34.120.237.76200 OK 9.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb8cb98e4-6956-416c-82e2-269c1c3a9ea7.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 95358bd2d700ee56273f5c03bb1b0ec9
3382013402b80585d811e8df916e32c055e559b7
9bdcf882b96fbbac533a799269480cc1af0e1dd891854939e1500adf2a5d1c10
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb8cb98e4-6956-416c-82e2-269c1c3a9ea7.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9447
x-amzn-requestid: 7f33035c-70b3-4efd-9bbe-0975847cb21a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cltmLExfoAMFwYA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638bc2f4-20c26c902a341f7a00b62316;Sampled=0
x-amzn-remapped-date: Sat, 03 Dec 2022 21:43:16 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: PpTFuHAWhFD1MhQGFZWYpenveUsGPtRE3GkL0Dy1mSFh-EeDcUKa_w==
via: 1.1 9b311162717b41c968f6f00426d88aaa.cloudfront.net (CloudFront), 1.1 d6b180eb367f7de26d67a9f3901b96a6.cloudfront.net (CloudFront), 1.1 google
date: Sat, 03 Dec 2022 22:16:34 GMT
age: 16765
etag: "3382013402b80585d811e8df916e32c055e559b7"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F826f887d-ca78-40db-9b7d-6c693667c155.jpeg
34.120.237.76200 OK 7.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F826f887d-ca78-40db-9b7d-6c693667c155.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash c1a6f4805f59db44f9d3520d88701a58
6a0258e8c97ce09f1723382c8a16d9682b7dc50c
ae120df5e96352c6998c24c69c709dfd2b01a7ff8a7b935d496757fd7661f2f5
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F826f887d-ca78-40db-9b7d-6c693667c155.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7503
x-amzn-requestid: b096d14d-15bf-4d18-9930-5fffe561a40b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cgZwuFMcoAMFbTA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6389a337-1d3c4759652c0b314f458aa8;Sampled=0
x-amzn-remapped-date: Fri, 02 Dec 2022 07:03:19 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 3jrjQkv2nL9y5cmo5g30an3DJE0wiK2ifHwkukMztymsg6nDnXWOJw==
via: 1.1 2afae0d44e2540f472c0635ab62c232a.cloudfront.net (CloudFront), 1.1 7eb3b782ab09047ce0d11ee03763894c.cloudfront.net (CloudFront), 1.1 google
date: Sat, 03 Dec 2022 07:23:19 GMT
age: 70360
etag: "6a0258e8c97ce09f1723382c8a16d9682b7dc50c"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6df54ea7-8915-4ac7-af2b-6a71ce14dbf4.webp
34.120.237.76200 OK 5.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6df54ea7-8915-4ac7-af2b-6a71ce14dbf4.webp
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 43309032a892c486f9985ef520df696e
36f4682ca6a33ff80ee02129c77e6f27e996ede0
24225ff504f30405d9ec3feb2555c738fcca0d6b265f285aa9c73a64c78a496e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6df54ea7-8915-4ac7-af2b-6a71ce14dbf4.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5681
x-amzn-requestid: 8f0d66b8-d532-48d9-9a29-74540cd6ab3a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cltXnEotIAMFqkA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638bc296-27349a376ff819ab63b04a81;Sampled=0
x-amzn-remapped-date: Sat, 03 Dec 2022 21:41:42 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: vNP2rQwmWTntetjJyjonO8N_YOBqvQuZUm42BWX7c1GoX7jASOIpCg==
via: 1.1 26ca01ec7377e425b59b6a08cb1ec342.cloudfront.net (CloudFront), 1.1 f9d716a351f14a0ac1fac2449734849a.cloudfront.net (CloudFront), 1.1 google
date: Sat, 03 Dec 2022 21:49:42 GMT
age: 18377
etag: "36f4682ca6a33ff80ee02129c77e6f27e996ede0"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F61cc2744-b517-4404-bfa2-25fadadfa3f3.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F61cc2744-b517-4404-bfa2-25fadadfa3f3.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 2636f91bb8fa4d9bb7bef114c248a9ae
8637105f41058bc0d2b259d462b560881928adb6
3d93fd8fcf1af31d00ccbd453142dbea5f2b91d7f58373095943ed40a31ed1f7
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F61cc2744-b517-4404-bfa2-25fadadfa3f3.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10431
x-amzn-requestid: f79ab5e7-8c1b-4827-a531-aaa19c1d80aa
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: clsCGEwxIAMF34g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638bc073-6358d2950955884c470c0a89;Sampled=0
x-amzn-remapped-date: Sat, 03 Dec 2022 21:32:35 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: PQ7xh995cd1UVi3z42EVZGjQjHLLvtAP5BBC-xLEEGr4mEiXS6fC-w==
via: 1.1 0c96ded7ff282d2dbcf47c918b6bb500.cloudfront.net (CloudFront), 1.1 aef00f14752da9aa504d392fd46eff94.cloudfront.net (CloudFront), 1.1 google
date: Sat, 03 Dec 2022 21:47:06 GMT
age: 18533
etag: "8637105f41058bc0d2b259d462b560881928adb6"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
cdn.viglink.com/images/pixel.gif?ch=1&rn=1.4369844771085787
54.230.111.25200 OK 43 B URL HTTP/2 cdn.viglink.com/images/pixel.gif?ch=1&rn=1.4369844771085787
IP 54.230.111.25:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 221d8352905f2c38b3cb2bd191d630b0
d804b495cb9b84b9007a25b5d85f9ae674004cde
89fe0ee6020314794fc2cfeacf3d10c31050cfe56f8ebddf1ed0a33fbe941fa7
GET /images/pixel.gif?ch=1&rn=1.4369844771085787 HTTP/1.1
Host: cdn.viglink.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://funkcjonariusz.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/gif
content-length: 43
last-modified: Tue, 10 Feb 2015 03:29:39 GMT
accept-ranges: bytes
server: AmazonS3
date: Sun, 04 Dec 2022 02:55:58 GMT
cache-control: max-age=15, must-revalidate
etag: "221d8352905f2c38b3cb2bd191d630b0"
x-cache: Hit from cloudfront
via: 1.1 b053873243f91b1bb6dc406ce0c67db4.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 6SJ4koQL_LzaOFKHFpmZzuBTeOohGPm8D4NpurIzFUkUy2YwfwBURA==
age: 2
X-Firefox-Spdy: h2
cdn.viglink.com/images/pixel.gif?ch=2&rn=1.4369844771085787
54.230.111.25200 OK 43 B URL HTTP/2 cdn.viglink.com/images/pixel.gif?ch=2&rn=1.4369844771085787
IP 54.230.111.25:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 221d8352905f2c38b3cb2bd191d630b0
d804b495cb9b84b9007a25b5d85f9ae674004cde
89fe0ee6020314794fc2cfeacf3d10c31050cfe56f8ebddf1ed0a33fbe941fa7
GET /images/pixel.gif?ch=2&rn=1.4369844771085787 HTTP/1.1
Host: cdn.viglink.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://funkcjonariusz.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/gif
content-length: 43
last-modified: Tue, 10 Feb 2015 03:29:39 GMT
accept-ranges: bytes
server: AmazonS3
date: Sun, 04 Dec 2022 02:55:58 GMT
cache-control: max-age=15, must-revalidate
etag: "221d8352905f2c38b3cb2bd191d630b0"
x-cache: Hit from cloudfront
via: 1.1 b053873243f91b1bb6dc406ce0c67db4.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: ZWHFwR8bskqmACaz5Ks0puS3_Q_e9wxv85zT6spiCp_zucAd5i0CmA==
age: 2
X-Firefox-Spdy: h2
referrer.disqus.com/juggler/event.gif?abe=0&embed_hidden=0&load_time=249&event=init_embed&thread=9214356404&forum=funkcjonariusz&forum_id=7365632&imp=2m9knd2sbqqe6&thread_slug=funkcjonariusz_650&user_type=anon&referrer=https%3A%2F%2Ffunkcjonariusz.com%2F&theme=next&dnt=0&tracking_enabled=0&experiment=network_default_hidden&variant=fallthrough&service=dynamic&promoted_enabled=false&max_enabled=false
199.232.196.134200 OK 43 B URL HTTP/1.1 referrer.disqus.com/juggler/event.gif?abe=0&embed_hidden=0&load_time=249&event=init_embed&thread=9214356404&forum=funkcjonariusz&forum_id=7365632&imp=2m9knd2sbqqe6&thread_slug=funkcjonariusz_650&user_type=anon&referrer=https%3A%2F%2Ffunkcjonariusz.com%2F&theme=next&dnt=0&tracking_enabled=0&experiment=network_default_hidden&variant=fallthrough&service=dynamic&promoted_enabled=false&max_enabled=false
IP 199.232.196.134:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /juggler/event.gif?abe=0&embed_hidden=0&load_time=249&event=init_embed&thread=9214356404&forum=funkcjonariusz&forum_id=7365632&imp=2m9knd2sbqqe6&thread_slug=funkcjonariusz_650&user_type=anon&referrer=https%3A%2F%2Ffunkcjonariusz.com%2F&theme=next&dnt=0&tracking_enabled=0&experiment=network_default_hidden&variant=fallthrough&service=dynamic&promoted_enabled=false&max_enabled=false HTTP/1.1
Host: referrer.disqus.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://disqus.com/embed/comments/?base=default&f=funkcjonariusz&t_u=https%3A%2F%2Ffunkcjonariusz.com%2Fczy-funkcjonariusz-jest-w-stanie-zastapic-pegasusa.html%3Fdomain%3Doneadjump.com%26redirect%3D%2F&t_e=Funkcjonariusz&t_d=Czy%20Funkcjonariusz%20jest%20w%20stanie%20zast%C4%85pi%C4%87%20Pegasusa%3F&t_t=Funkcjonariusz&s_o=default
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/1.1 200 OK
Connection: keep-alive
Content-Length: 43
Server: nginx
Content-Type: image/gif
Last-Modified: Mon, 28 Sep 1970 06:00:00 GMT
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Date: Sun, 04 Dec 2022 02:55:59 GMT
Cross-Origin-Resource-Policy: cross-origin
links.services.disqus.com/api/ping
199.232.196.64403 Forbidden 979 B URL HTTP/1.1 links.services.disqus.com/api/ping
IP 199.232.196.64:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (979), with no line terminators
Hash 1edc3fac1e0eb87ed6b19d4ecd08f8ef
bc58af52fa6a97e7506db76cb9e5a1895c92dcfd
613acec36f8b4ee7869a9907bc4b81eb6c24bcdd373520d6ee3a9b040d78ed98
POST /api/ping HTTP/1.1
Host: links.services.disqus.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Content-Length: 231
Origin: https://funkcjonariusz.com
Connection: keep-alive
Referer: https://funkcjonariusz.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 403 Forbidden
Connection: keep-alive
Content-Length: 979
Content-Language: en
Content-Type: text/html;charset=utf-8
P3P: CP="ALL IND DSP COR CUR ADM TAIo PSDo OUR COM INT NAV PUR STA UNI"
Server: Apache-Coyote/1.1
Date: Sun, 04 Dec 2022 02:56:00 GMT
Set-Cookie: vglnk.Agent.p=23ce040820a62f6557df9bf6e7723987; Expires=Mon, 04 Dec 2023 02:56:00 GMT; path=/
vglnk.PartnerRfsh.p=; Expires=Mon, 04 Dec 2023 02:56:00 GMT; path=/
payload.piwik.pro/ppms.php?ping=2&idsite=403cd276-3e9a-41e2-bb85-5ab3bb41b327&rec=1&r=511830&h=2&m=56&s=3&url=https%3A%2F%2Ffunkcjonariusz.com%2Fczy-funkcjonariusz-jest-w-stanie-zastapic-pegasusa.html%3Fdomain%3Doneadjump.com%26redirect%3D%2F&_id=e08f69f26a0d62ac&_idts=1670122556&_idvc=1&_idn=0&_viewts=1670122556&send_image=0&ts_n=jstc_tm&ts_v=2.8.3&cookie=1&res=1280x1024>_ms=53&t_ss=599&t_fs=460&t_ds=461&t_cs=558&t_ce=645&t_qs=645&t_as=684&t_ae=698&t_dl=739&t_di=1469&t_ls=1496&t_le=1502&t_dc=1999&t_ee=2005&pv_id=imP5h6
20.79.102.66202 Accepted 0 B URL HTTP/2 payload.piwik.pro/ppms.php?ping=2&idsite=403cd276-3e9a-41e2-bb85-5ab3bb41b327&rec=1&r=511830&h=2&m=56&s=3&url=https%3A%2F%2Ffunkcjonariusz.com%2Fczy-funkcjonariusz-jest-w-stanie-zastapic-pegasusa.html%3Fdomain%3Doneadjump.com%26redirect%3D%2F&_id=e08f69f26a0d62ac&_idts=1670122556&_idvc=1&_idn=0&_viewts=1670122556&send_image=0&ts_n=jstc_tm&ts_v=2.8.3&cookie=1&res=1280x1024>_ms=53&t_ss=599&t_fs=460&t_ds=461&t_cs=558&t_ce=645&t_qs=645&t_as=684&t_ae=698&t_dl=739&t_di=1469&t_ls=1496&t_le=1502&t_dc=1999&t_ee=2005&pv_id=imP5h6
IP 20.79.102.66:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /ppms.php?ping=2&idsite=403cd276-3e9a-41e2-bb85-5ab3bb41b327&rec=1&r=511830&h=2&m=56&s=3&url=https%3A%2F%2Ffunkcjonariusz.com%2Fczy-funkcjonariusz-jest-w-stanie-zastapic-pegasusa.html%3Fdomain%3Doneadjump.com%26redirect%3D%2F&_id=e08f69f26a0d62ac&_idts=1670122556&_idvc=1&_idn=0&_viewts=1670122556&send_image=0&ts_n=jstc_tm&ts_v=2.8.3&cookie=1&res=1280x1024>_ms=53&t_ss=599&t_fs=460&t_ds=461&t_cs=558&t_ce=645&t_qs=645&t_as=684&t_ae=698&t_dl=739&t_di=1469&t_ls=1496&t_le=1502&t_dc=1999&t_ee=2005&pv_id=imP5h6 HTTP/1.1
Host: payload.piwik.pro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded; charset=utf-8
Content-Length: 500
Origin: https://funkcjonariusz.com
Connection: keep-alive
Referer: https://funkcjonariusz.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 202 Accepted
content-length: 0
access-control-allow-origin: https://funkcjonariusz.com
content-security-policy: frame-ancestors 'none'
content-type: text/html
cache-control: no-store
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
date: Sun, 04 Dec 2022 02:56:05 GMT
x-content-type-options: nosniff
referrer-policy: origin
x-frame-options: sameorigin
X-Firefox-Spdy: h2
payload.containers.piwik.pro/403cd276-3e9a-41e2-bb85-5ab3bb41b327.js
20.79.102.66200 OK 0 B URL HTTP/2 payload.containers.piwik.pro/403cd276-3e9a-41e2-bb85-5ab3bb41b327.js
IP 20.79.102.66:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
GET /403cd276-3e9a-41e2-bb85-5ab3bb41b327.js HTTP/1.1
Host: payload.containers.piwik.pro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://funkcjonariusz.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 04 Dec 2022 02:55:58 GMT
content-type: application/javascript; charset=utf-8
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
vary: Accept-Encoding, Accept-Encoding, Cookie
etag: W/"1f760b13d719a6cc-4b7daa4d2a00f4cb"
x-robots-tag: none
content-encoding: gzip
x-content-type-options: nosniff
referrer-policy: origin
x-frame-options: sameorigin
X-Firefox-Spdy: h2
fonts.googleapis.com/css2?family=Rubik:ital,wght@0,300;0,400;0,500;0,600;0,700;1,400;1,500;1,600;1,700&family=Teko:wght@300;400;500;600;700&display=swap
142.250.74.106200 OK 0 B URL HTTP/2 fonts.googleapis.com/css2?family=Rubik:ital,wght@0,300;0,400;0,500;0,600;0,700;1,400;1,500;1,600;1,700&family=Teko:wght@300;400;500;600;700&display=swap
IP 142.250.74.106:0
GET /css2?family=Rubik:ital,wght@0,300;0,400;0,500;0,600;0,700;1,400;1,500;1,600;1,700&family=Teko:wght@300;400;500;600;700&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://funkcjonariusz.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sun, 04 Dec 2022 02:55:57 GMT
date: Sun, 04 Dec 2022 02:55:57 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
payload.containers.piwik.pro/ppms.js
20.79.102.66200 OK 0 B URL HTTP/2 payload.containers.piwik.pro/ppms.js
IP 20.79.102.66:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
GET /ppms.js HTTP/1.1
Host: payload.containers.piwik.pro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://funkcjonariusz.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Dec 2022 02:55:58 GMT
content-type: application/javascript
last-modified: Tue, 20 Sep 2022 11:32:38 GMT
vary: Accept-Encoding
etag: W/"6329a4d6-13d50"
expires: Sun, 04 Dec 2022 08:55:58 GMT
cache-control: max-age=21600
content-encoding: gzip
x-content-type-options: nosniff
referrer-policy: origin
x-frame-options: sameorigin
X-Firefox-Spdy: h2